Regulatory guidelines and industry security standards such as the PCI Data Security Standard (PCI DSS) and U.S. State Breach Notification Laws continue to motivate companies to develop and adopt an encryption strategy for their high-risk data stores and applications. Effectively implementing an encryption strategy has traditionally required application developers and data architects that possess a high level of security knowledge. However, the larger challenge is in how you implement encryption without breaking your existing data flows and business processes.

Maybe you've already encrypted your sensitive data. Or, maybe you are just moving down the path towards encryption. How much thought have you actually given to what you're going to do with all of the keys that make encryption possible? If you can't find the keys when you need them, your data is as good as lost. If they are not someplace safe, you run a higher risk of compromise. If there isn't one place where all of your applications can go when they need a key, you've just created a multitude of new integration problems for yourself. Key management, especially in large connected and distributed enterprises, is difficult to perform correctly. Keys need to be generated carefully and then securely transferred to multiple client applications with guaranteed integrity. A very secure and reliable storage mechanism is required because the loss of a critical key can result in the loss of the critical data it protects. Any outage of the key management system can prevent the business from functioning. Mechanisms need to be provided to enforce security policies for keys such as key rollover, auditing and revocation. A key management system should also be easy to use by those implementing encryption.

RSA Key Manager is designed to address all of these concerns to help reduce complexity in encryption deployments by centralizing the provisioning and lifecycle management of encryption keys for all of your enterprise encryption deployments. RSA Key Manager alleviates these problems by working across a wide variety of operating platforms and development environments to ease integration with applications that use encryption. It manages access rules and lifecycle decisions simplifying security policy deployment and ongoing administration across large, heterogeneous information infrastructures. RSA Key Manager is also easily integrated into specialized applications such as retail point-of-sale (POS) terminals, reservation systems, and payment systems to help properly protect sensitive information such as credit card magnetic stripe data and consumer data at the point of entry to meet PCI and other data security requirements. This capability to protect at the point of entry helps ensure the information will be both properly secured and fully accessible when needed at any point in its information lifecycle.

RSA Key Manager

• Summary
• News
• Video
• Buy