Trending...
- Spokane: Call for High School Artists: 2026 Riverfront Park Poster Contest
- Tuckwell Machinery Expands CNC Range to Support Australian Cabinet Makers
- Systemic Certification Breakdown: Federal Oversight Undermined by ANAB Governance Conflicts (2018–2026)
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Certified Trading Card Association and Collectors MD Launch Healthy Hobby Initiative
- A Letter From the Tacoma City Council to the Sound Transit Board
- Tacoma: City Council Approves Contract, Officially Appointing Hyun Kim as City Manager
- Tacoma: Homicide Investigation – 3400 Block South 19th Street
- L2 Aviation Earns FAA STC for Thales AVIATOR 200S for Boeing 777
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Women-Owned Business Platform SmartPath Launches to Help Entrepreneurs Build with Confidence
- FinIQ Edu Launches High-Impact Workshop Vertical to Close the Workplace Benefits Gap—Drives 82% Surge in 401(k) Participation Intent
- HousingWire launches Mortgage Rankings, bringing a data-driven benchmark to originator performance
- J&J Exterminating Reminds Residents to prepare for Termite Swarm Season
- City of Spokane Celebrates Return of Spokane Gives
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- NRx Pharmaceuticals Could Be on the Verge of a Breakout Year as AI, FDA Catalysts, and Mental Health Demand Converge
- DC Accounting Firm Offers Free Business CRM to Small Business Clients Alongside Weekly Bookkeeping Model
- CCHR: Psychiatric Drugs Fuel Rising Death Toll: National Adverse Drug Event Awareness Day Confronts America's Medication Crisis
- Explosive $10 Billion Counter-Drone Market with AI-Powered Defense Ecosystem: ZenaTech, Inc. (N A S D A Q: ZENA)
- High-Value Execution Phase Begins: Bitcoin Bancorp Ignites Texas Rollout of Digital Asset ATM Network: Bitcoin Bancorp (Stock Symbol: BCBC) $BCBC
- Tacoma: Homicide Investigation – 100 block of east 91st Street
- UK Financial Ltd Tokenized LTNS 1, A $1.1 T Asset-Backed ERC-3643 Security Token with 11 On-Chain Contracts Verifying, Compliant Real-World Value
- SelfCare is now HealthCare across America
- State of TBM 2025 Report: 83% of Organizations Boost Performance & Efficiency
- Spokane: Call for High School Artists: 2026 Riverfront Park Poster Contest
- Spokane: Traffic Impacts Starting Monday, March 30
- Homeowner Prep Announces Strategic Language Shift: Replacing "Renters" with "Future Homeowners" to Inspire Wealth-Building Mindsets
- LiposoMore™ Redefines Bioavailability: Joyful Nutritional Launches High-Performance Liposomal Vitamin C and Iron for the Global Supplement Market
- GDE Tree Services Expands Operations into Sydney, NSW
- Tuckwell Machinery Expands CNC Range to Support Australian Cabinet Makers
- The Inner Power of Emotional Self-Leadership
- Dr. Nadene Rose Shares the Secret to True Success: Faith, Obedience, and Divine Purpose
- Spokane: Armed Barricaded Subject Causes N. Market St To Close
- Enleaf Founder Joins AI Panel at Møde Campus to Help Spokane-Area Businesses Navigate the AI Shift
- Tacoma: Lincoln Avenue Bridge to Close April 4 for Major Asphalt Repairs