Trending...
- Spokane: New Scam Targeting Families Of Out-Of-Custody Defendants
- Spokane: DUI Driver Arrested After Vehicle Loses Control and Flips
- ReviewsAlly Launches Evidence-Based Review Platform for VPNs, Business Software, and Online Services
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Salt Lake City Families Turn to Private Autopsy Services for Faster Answers After Unexpected Loss
- SPD Seeking Assistance Regarding Motorcycle Collision in North Spokane
- K2 Integrity's U.S. and EMEA Teams Again Recognized in Chambers and Partners 2026 Guides
- Connecta Satellite Solutions Ready to Support Emergency Communications Following the Venezuela Earthquake
- NUSACC Supports Iraq Higher Education Roadshow to the United States
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Rare 1933 Harold Weston painting will be auctioned to benefit the Keene Valley Library
- $20 Million Revenue Target, Accelerating Growth, 7% Of Outstanding Shares Retired, Clear Path Toward Profitability: VSee Health, Inc N A S D A Q: VSEE
- HomeCentris Home Health Achieves 5-Star CMS Rating
- Adsoptia Launches AI-Powered Optimization Platform for a New Era of Autonomous Marketing Decisions
- Longevity Leaders Project to Feature BrainBoosters Ted Teele & Carmen Benavide
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- Century Fasteners de Mexico Exhibiting at 2026 Farnborough International Airshow
- George Martinez Completes Community Re-distribution Initiative, Returning $5,000 In Campaign Resources To Anchorage Nonprofits
- Spokane City Council Passes One-Year Moratorium on Data Centers
- Mister Omaha Tries The Turf At Lone Star Park
- Andrew D. Levine Releases The Lily Network, an Indian Noir Mystery of Power, Paperwork & Murder
- The Mapping Software Behind America's Viral Maps Just Got Faster and Smarter
- Longevityresearch.ca publishes cross-disease causal analysis quantifying endpoint reduction across 27 diseases
- Joulescope JS320 Launches to Help Engineers Develop Battery-Powered Devices with Greater Confidence
- Ghanaian Afrobeat Artist Praise Kusi Announces Upcoming EP "After 21:00" Releasing July 3, 2026
- TURRENTINE: A Family Legacy United Through Music
- City of Spokane, Spokane Public Schools Partner to Expand Childcare Access
- Save 10 Percent Off Summer Stays at KeysCaribbean Resorts
- CGI Announces Pre-Order Launch for New Integrated Behavioral Health Book
- Prince George's County Students Now Have A Rare Opportunity In TV Film Production Career-readiness
- City of San José Could Lose Access to Millions Under New CalEnviroScreen Tool 5.0
- This Weekend Causeway Cove Country BBQ & Music Festival Returns for Fourth Year, Celebrating America's 250th Anniversary on the Water
- Webtronix Designs Web Agency Launches "LocalFind" to Revolutionize AI Local SEO for Local Businesses
- Christmas Miracle Chronicles - New movie coming up this holiday season !
- Healthi Life, Bangkok's Urban Longevity House, Honoured at Asia-Pacific Awards 2025
- ReviewsAlly Launches Evidence-Based Review Platform for VPNs, Business Software, and Online Services