Trending...
- Veterans Day 2025: Honoring Service Through Storytelling
- U.S. Entrepreneur Anjo De Heus Builds Innovation Bridge Between America and the Gulf
- WHES Retains BloombergNEF Tier 1 Ranking for Sixth Consecutive Quarter
SEATTLE--(BUSINESS WIRE)--The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Cloud Key Management System with External Origin Key. Written by the Cloud Key Management Working Group to help organizations optimize such business outcomes as security, agility, cost, and compliance, the paper provides general guidance for choosing, planning, and deploying cloud-native key management systems (KMS) in cases where organizations either want to or must import key material (e.g., keys, vaults, secrets, policies) from an external source.
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
"A cloud service provider's KMS often has strong ties to its other cloud services, and this same cloud-native KMS using EKO can be used with a customer's on-premises technologies and cloud services from other providers. Unsurprisingly, integrating a cloud KMS with an organization's assets spanning traditional private data centers, as well as private and public cloud services in various geographic locations presents a host of challenges," said Paul Rich, co-chair of the Cloud Key Management Working Group and one of the paper's authors. "It's our hope that after reading this document, program and project managers who have been tasked with leading their organization through the selection, planning, and deployment stages of cloud-native KMS using EKO will be able map considerations to their organization."
More on Washingtoner
- ZEELOOL's Black Friday Sale Starts Early with Up to 80% Off Frames
- UV Weathering Test Chamber vs Xenon Arc Test Chamber: What's the Right Solution for Your Products
- Emeritus Addresses Hospital Bed Shortages with Smart Storage Solutions
- Fulton County & Grow Your World Amplify Atlanta Youth Through the Youth Audio Collective
- Spokane: Firework Thrown From a Vehicle Causes Severe Injuries to Another
The guidance addresses the technical, operational, legal, regulatory, and financial aspects of leveraging a cloud-native KMS using external key origin (EKO) for each of the three stages of the lifecycle (choosing, planning, and deploying). Each aspect is broken down into further considerations and their accompanying justifications. Because cloud-native key management systems using EKO are relatively new, there isn't a large repository of best practices from which to draw. This guidance, therefore, combines best practices drawn from experience with traditional key management systems, cloud services in general, and cloud-native key management systems.
For further reading, Key Management in Cloud Services: Understanding Encryption's Desired Outcomes and Limitations provides the foundation for the choice of cloud KMS pattern and general guidance for using KMS whether the KMS is native to a cloud platform, external, self-operated, or yet another cloud service. Additionally, Recommendations for Adopting a Cloud-Native Key Management System provides more specific guidance for choosing, planning, and deploying cloud-native key management systems.
The Cloud Key Management Working Group aims to facilitate the standards for seamless integration between cloud service providers and key broker services. Those interested in participating in future research and initiatives involving cloud key management are invited to join the working group.
More on Washingtoner
- Spokane: Coffee With Council District 2 Council Members
- 2026 Oscars Betting Odds: One Battle After Another Favored for Best Picture
- Allen Field Co., Inc. Components Selected for Esko ArtiosCAD 3D Component Library
- Monroe Welcomes The Great Junk Hunt – This Vintage Market is Getting Ready for the Holidays!
- Thirteen Reasons Why Gyminny Kids Is San Diego's Best Gymnastics Gym
Download Cloud Key Management System with External Origin Key now.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Contacts
Media Contacts
Kristina Rundquist for the CSA
kristina@zagcommunications.com
Filed Under: Business
0 Comments
Latest on Washingtoner
- 20 Million Financing to Accelerate Growth and Advance Digital Asset Strategy Secured for Super League (N A S D A Q: SLE)
- uCAR Trading Launches goldsilbermarkt.de, a New Online Shop for Precious Metals
- Webinar Announcement: Reputational Risk Management in Internal Investigations: Controlling the Narrative Before, During, and After a Crisis
- Seattle Walk In Tubs Announces Service Area Expansion to Greater Seattle Region
- Seattle Bathroom Remodeling Announces Service Area Expansion to Greater Seattle Region
- Taking on the Multi-Billion-Dollar Swipe Industry: AI Curates Who You Meet—IRL over brunch
- Curated Domain Name Marketplace
- Spokane: Suspect in Custody After Committing Multiple Armed Robberies
- 5,000 Australians Call for Clarity: NaturismRE's Petition Reaches Major Milestone
- Cartwheel Signs Letter of Intent to License Clearsight Therapeutics' Novel Pink Eye Treatment for 2027 Portfolio Expansion
- Vet Maps Launches National Platform to Spotlight Veteran-Owned Businesses and Causes
- $114.6 Million in Revenues, Up 54%: Uni-Fuels Holdings (N A S D A Q: UFG) Accelerates Global Expansion Across Major Shipping Hubs as Demand Surges
- Dental Care Solutions Unveils New Website for Enhanced Patient Engagement
- TradingHabits.com Launches to Support Day Trader Well-being
- $750 Million Market on Track to $3.35 Billion by 2034: $NRXP Launches First-in-Florida "One Day" Depression Treatment in Partnership with Ampa Health
- Fire Outside City of Tacoma Facility on Martin Luther King Jr. Way Temporarily Disrupts PEG Channels
- $750 Million Market Set to Soar to $3.35 Billion by 2034 as Florida Launches First-in-Nation One-Day: NRx Pharmaceuticals (N A S D A Q: NRXP) $NRXP
- BITE Data raises $3m to build AI tools for global trade compliance teams
- Phinge Issues Notice of Possible Infringement, Investigates App-less AI Agents & Technology for Unauthorized Use of its Patented App-less Technologies
- Tacoma: Homicide Investigation – 5100 S 58th Street