Trending...
- CAPHRA: Australia and Thailand show nicotine prohibition fuels illicit markets
- STO Foundation Launching June 29, 2026 to Advance the Global Tokenization Industry
- Spokane: City Closures Planned for Juneteenth
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Spokane: New Scam Targeting Families Of Out-Of-Custody Defendants
- Finland Sets Casino Gambling Risk Limits at 2% of Income, 4 Days, 2 Game Types
- Award-Winning Author Diana Colleen Reframes Billionaire-ism, Psychedelic Healing, and the Illusion of Separateness
- The Prolific Writer, Producer "Hunter" Is Bringing New Music For Summer Release
- Millennial Maven Creative Foundation Assists In Bringing Juneteenth to the FIFA World Cup Fan Festival with an Authentically Dallas Lineup
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- An AI Memory System Sealed Its Own Records to Bitcoin
- Spokane: DUI Driver Arrested After Vehicle Loses Control and Flips
- Two Florida Family Law Firms Named Among the State's Best Divorce Practices for 2026
- Tacoma: No Impact to Garbage, Recycling and Yard/Food Waste Pick-Ups on June 19
- Tacoma Arts Live And Accelerating Creative Enterprise Present Ace Showace
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- Warm, Dry Summer Forecast Points to a Stronger Wasp and Yellowjacket Season Across the Pacific Northwest
- Qscription Technologies Appoints Anurag Velekkatt Sunil Kumar to Drive Enterprise Scale
- Spokane: City Closures Planned for Juneteenth
- SafeBets Named Presenting Sponsor of IMCX 2026, Bringing Its No-Deposit Prediction Platform to the Creator Economy's Deal-Making Conference
- A New Pulse for Cardiac Care in Baltimore: St. Elizabeth Rehab & Nursing Welcomes Dr. Hakim Uqdah and Expands Advanced Heart Program
- Inframark–Slater Joint Venture Selected to Manage Fulton County Wastewater Operations
- Cancun International Airport Reports Strong Start to Summer 2026 Travel Season
- Freedomtech Solutions Launches the World's First Pre‑Installed Agentic AI Server — Instant, Sovereign, Infrastructure‑Native Intelligence
- GitKraken Introduces Code Flow, a Framework for Software Development in the Agentic Era
- SanctionsLookup Launches Free OFAC Search Tool for U.S. Sanctions Screening
- RIGHT CARS Announces Landmark African Expansion Through Strategic Collaboration Agreement Across Eight Nations
- Spokane: Housing and Human Services Dept. Provides Update on Housing and Homelessness Initiatives
- Boston Industrial Solutions' Natron® 717N Series UV LED Ink Receives CPSIA Certification
- Spokane City Clerk To Retire After 30 Years In Role, Successor Named
- purelyIV Expands Mobile IV Therapy to Jackson, MI and Launches PlaqueX® IV Therapy
- Leimert Juneteenth Community Celebration Set for Friday, June 19, in Leimert Park Village
- UK Financial Ltd Publishes Maya Preferred Public Proof Package and CoinMarketCap Supply Verification Evidence
- Haven Treatment Center Launches Community Haircut Drive to Help Local Families
- Advancing High-Potential Nevada Critical Minerals Portfolio as Major Drill Program Nears Assay Results: Glenstar Minerals: Stock Symbol: GSTRF
- Allstream Energy Partners to Host 6th Executive Networking After 2026 Energy Projects Conference