Trending...
- Attorney Joseph C. Kreps Files Lawsuit to Stop Alabama State Board of Pharmacy's Unlawful "Revenue-First" Rulemaking
- NAIDOC Week Australia 2026 | 50 Years Deadly - Celebrates Culture, Resilience, and Global Connection
- Dental Implants in Everett, WA: 19th Avenue Dental Offers Permanent Tooth Replacement Solutions
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- Floor Kings Announces Official Launch of Premier Epoxy Flooring Services Across Arizona
- UK Buyers Purchase Luxury Home in Keene's Pointe, Windermere (Orlando, Florida)
- Instant IP Launches Rapid Takedown Service to Combat IP Theft, Deepfakes, and Copycat Websites
- Tacoma: Lincoln Avenue Bridge to Close Saturday, April 18 for Asphalt Repairs
- City of Tacoma Invites Community to Shape the Future of Their Neighborhoods at Upcoming Code Update Event
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Su Che Publishing Announces New Children's Book Celebrating Vaisakhi Festival
- Permian Museum Adds Photos of Fossils Discovered on a Meteorite
- This Saturday: Open House for Manalapan's Newest Single Family Home Community
- Radarsign™ Awarded Sourcewell Contract Expanding Access to Traffic Safety Solutions
- MainConcept and NETINT Bring VPU Acceleration to Easy Video API
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
0 Comments
Latest on Washingtoner
- As Global Tensions Rise, Demand Grows for Private Spaces to Process Thoughts and Speak Freely Online
- Two Porch Fires Displace Eleven Residents in Spokane
- Cryptsoft demonstrates Hybrid-PQC Authentication Token use for quantum-safe systems and infrastructure
- Expert Law Attorneys' Top Law Firms to Know: March 2026
- Cinder Labs Launches AIRA Shield: Purpose-Built AI Security Platform to Combat Shadow AI
- City of Tacoma to Host In-Person 'P&L Show & Tell' Financial Workshop for Small Businesses on April 21
- City of Tacoma Implements Strategic Freeze on Hiring and Promotions
- Spokane Police Officers Rescue Puppy After Thief Abandoned It
- Green Office Partner Strengthens Global Operations with Mexico-Based DigitalVAAR Partnership
- P-Wave Classics Announces the Publication of The Female Quixote, Volume I, by Charlotte Lennox
- Everwild Music Festival Unveils 2026 Schedule: No Overlapping Sets, Longer Performances, and Epic Late-Night Sets!
- Riggo Production Studio Launches Monthly Content Package for Growing Brands
- Accelerating into Active Oil Production with over 100 Barrels per day now being produced as Dual-revenue engine begins Generating Cash Flow: $IBG
- Finland emerges as clear Eurovision 2026 favourite – analysis of 12 bookmakers by Vedonlyöntisivut
- Mac Mountain Selects netElastic vRouter for LightCraft Broadband-as-a-Service Platform
- 88% Revenue Growth; Charging Into the Future with Explosive Growth, Strategic EV Expansion and Infrastructure Dominance Signal a Breakout Opportunity
- Forge Resources Unlocks Major Gold-Copper System in Yukon as Drilling Success and Strategic Assets Fuel High-Impact Growth Story for: $FRGGF
- Game Day Private Jets Launches REVUP Platform to Transform Fan & Donor Travel Into a Revenue Engine for College Athletics
- Heritage at South Brunswick Team Celebrates Major Wins at NJBA Sales and Marketing Awards
- InterMountain Announces the Opening of TownePlace Suites Reno