This article can also be found in the Premium Editorial Download "Storage magazine: What you need to know about data storage provisioning."
Download it now to read this article plus other related content.
nCipher's keyAuthority is a key management app designed to work with other standard cryptographic APIs such as Microsoft's MS-CAPI and RSA Laboratories' PKCS#11, Java JCA/JCE CSP and OpenSSL, as well as the storage-centric FIPS 140-2 standard.
The server application is secured using FIPS-certified hardware security modules that meet the FIPS standard for two-part authentication. The software runs on leading server operating systems, and can use a variety of SQL databases for its back end. It delivers keys to "end points" (point of key use) running on a variety of common server operating systems.
keyAuthority contains policy-based rules for key delivery, and powerful archive and audit capabilities. The system is scalable to thousands of end points and has a resilient architecture that allows, for example, keys to be served from multiple keyAuthority systems at different locations, all of which can be managed from a central console. The system also provides secure audit logs of management and operational activities to ease audit compliance.
keyAuthority can automatically provision different key types to different applications; if you buy the system to manage storage encryption keys, you can also use it to manage SSL keys for your Web applications or Java keys for custom apps. Pricing starts at approximately $50,000 for a small system with a limited number of supported end points.
This was first published in October 2006