Key Encryption for VMware Environments

Easily Encrypt vSAN Data Stores with KMIP-compliant Key Management Server

The encryption and protection of license keys is central to an enterprise’s data security strategy. Yet, even though key manager servers (KMS) have been around for a long time, organizations that rely on virtual machines (VMs), ( just about every organization today) are reluctant to adopt these servers because of added network latency and performance concerns.

It is now possible for vSphere users to encrypt a VM I/O with a Bring Your Own Key (BYOK) key management interoperability protocol (KMIP) compliant solution. However, when vCenter requests keys from the KMS to encrypt a vSAN data store, only one key is requested, and it encrypts the entire data store. This creates vulnerabilities in that only one key makes the data store vulnerable to attack, and if the KMS becomes unresponsive, the data cannot be encrypted or decrypted

The ARIA™ Key Management Server (KMS) is an easy-to-deploy application that takes advantage of the widely accepted KMIP for integration with other existing applications such as VMware vSphere. Running the ARIA KMS application on the Myricom Security Intelligent Adapter (SIA) and using its TrustZone TPM shields the keys from exposure, even if the host server is breached.

Benefits:

  • Provides a zero-footprint KMS with TrustZone

  • Deploys quickly, in most cases in an hour or less-without specialized knowledge

  • Supports Bring Your Own Key (BYOK) security models

  • Eliminates risk, thanks to automated configuration and management of critical KMS processes

Interested in learning more?

Download our complete technology brief, “Easily Encrypt VMware vSphere Environments with ARIA KMS” today!

Download Now

Contact Us to Speak to a Cybersecurity Expert!

Resources and Related Content

News

November 25, 2024
ARIA Cybersecurity Solutions Partners with CED to Protect Rockwell Automation Customers from Dangerous Cyberattacks

ARIA Cybersecurity Solutions, a CSPi business (NASDAQ: CSPi) a leading provider of cybersecurity solutions announced a new reseller partnership with CED Industrial Solutions Network…

November 21, 2024
F500 Electric Energy Producer Selects ARIA AZT PROTECT™ to Stop Dangerous Cyberattacks

ARIA’s AZT PROTECT™ zero trust solution provides a lock-down approach to protecting critical infrastructure applications from attack, with a focus on stopping all forms…

July 31, 2024
ARIA Cybersecurity Announces It Has Become a WWT Supplier

ARIA Cybersecurity Solutions, a CSPi business (NASDAQ: CSPi), has been selected by Worldwide Technology (WWT) to supply its award-winning, AZT PROTECT™ solution to its…

 

Events

November 20, 2024
Join us for Gary Southwell's session "How to measure the risk of a Cybersecurity Attack" at this years Automation Fair on Wednesday, November 20th…
October 21, 2024
The leading global conference for operations, control systems and IT/OT security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.
September 10, 2024
The bad guys keep getting better at what they do, and so must we, the defenders. Gary Southwell of Aria Cyber joins the Podcast…