Customer demand for encryption systems that support proven standards has never been higher. In appreciation of that, RSA Conference 2014 is showcasing interoperability demos for two of the most widely-adopted security standards from OASIS. The Key Management Interoperability Protocol (KMIP) and the Public-Key Cryptography Standard (PKCS) #11 are being featured in two separate demonstrations involving eleven companies. These organizations are delivering proven solutions that protect data, both in storage systems and in the cloud, across diverse infrastructures.
“As the need to encrypt data at rest, in-transit and in the cloud increases, cryptographic devices and enterprise key management become indispensable components of any enterprise. KMIP and PKCS #11—two separate, but complementary security standards—enable vendor-agnostic implementations that give CIOs, CSOs, and CTOs the freedom to select best-of-breed solutions knowing that they will interoperate seamlessly,” said Tony Cox of Cryptsoft, who coordinated the OASIS interoperability demonstrations for RSA 2014. “The OASIS Interop brings together systems ranging from enterprise key managers and storage appliances to HSMs, security tokens and cryptographic toolkits. It’s truly a ground-breaking event.”
KMIP enables communication between encryption systems and a broad range of new and legacy enterprise deployments, including applications, databases, and storage infrastructure. At the RSA Conference 2014, Cryptsoft, Dell, HP, IBM, P6R, SafeNet, Thales e-Security, and Vormetric are demonstrating KMIP across the full encryption key management lifecycle including creating, registering, locating, retrieving, deleting, and transferring symmetric and asymmetric keys and certificates between systems. Support for all three versions of KMIP (1.2, 1.1, and 1.0) is shown.
PKCS #11 Interop
PKCS #11 is an application programming interface (API) that enables interaction with cryptographic devices in multi-vendor environments. At the RSA Conference 2014, Cryptosense, Cryptsoft, Feitian, Oracle and Vormetric perform a range of PKCS #11 cryptographic functions including generating, finding, and using cryptographic objects with combinations of one or more symmetric keys, asymmetric keys, or certificates between vendor systems.
The OASIS KMIP and PKCS #11 Interops are being held at RSA Conference 2014 in Booth 1909 from 24-27 February.
Support for KMIP and PKCS #11 Demos
“Encryption of enterprise data has never been more important, and the use of the OASIS KMIP and PKCS #11 standards as the core of enterprise data security implementations delivers real-world interoperability. Using KMIP for key lifecycle management and PKCS #11 for hardware security module interaction delivers the best of both worlds. As a major OEM technology supplier, the rigor of the OASIS standards process helps ensure true interoperability is a reality for our customers.”
--Tim Hudson, Chief Security Architect, Cryptsoft
“The OASIS KMIP standard for cryptographic key management interoperability enables organizations to deploy higher levels of security and protect valuable data across a wide range of security infrastructures and solutions. HP is proud to be an original KMIP sponsor and to support full KMIP compliance with HP Enterprise Secure Key Manager 4.0 and HP Storage KMIP-enabled solutions, providing customer choice and confidence in our commitment to interoperability.”
--Albert Biketi, General Manager, Atalla, Enterprise Security Products, HP
“IBM is proud to participate in the OASIS KMIP Interop at RSA Conference 2014. KMIP has been and continues to be an important standard for our customers and for the industry. As part of the OASIS KMIP Technical Committee, IBM is bringing continuity, leadership, expertise, and strong innovation to encryption key management – a critical component to an overall system of data privacy and protection for cloud, mobile, big data and social environments.”
–Rick Robinson, Product Manager, Encryption and Key Management, IBM
“Oracle Solaris is committed to protecting customer data, not just in the operating system, but across the entire data center from hardware to application. We are proud to provide cryptographic leadership for the next generation of the OASIS PKCS #11 standard and are pleased to participate in the OASIS PKCS #11 Interoperability demo at RSA 2014 showcasing our current and future data protection mechanisms.”
--Valerie Fenwick, Oracle, co-chair OASIS PKCS 11 Technical Committee
“With all of the recent data breaches in the news, we know that encryption and proper key management are the backbones of strong security solutions. The OASIS partnership is important for the industry to assist in interoperability with security solutions that help protect organizations. As a leader, SafeNet is proud to be working with KMIP in the Enterprise Key Management market, in delivering a solution with the most integrated KMIP end points on the market today. SafeNet brings valuable knowledge to OASIS, and we’re excited to showcase this through the interoperability demos.”
--Mark Yakabuski, VP Crypto Management, SafeNet
"Now in its fourth year, the KMIP standard has become a de facto requirement for organizations around the world as they seek to execute against their key management strategy. Once again, Thales is delighted demonstrate its commitment to KMIP and to showcase keyAuthority, its own high assurance key manager. These types of events drive overall awareness, reinforce customer confidence, and provide an invaluable opportunity for the industry to come in the spirit of collaboration."
--Bob Lockhart, Chief Solutions Architect Key Management, Thales e-Security
“PKCS #11 and KMIP are widely recognized as leading industry standard protocols for helping organizations secure data, transactions and communications. The use of proven, open standards is good for the security ecosystem, for vendors, and for customers. Vormetric is delighted to be able demonstrate support for both of these standards at the RSA Conference.”
–Mike Yoder, Senior Security Architect, Vormetric
OASIS KMIP Technical Committee
OASIS PKCS 11 Technical Committee
OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, international consortium that drives the development, convergence and adoption of open standards for the global information society. OASIS promotes industry consensus and produces worldwide standards for security, cloud computing, Web services, the Smart Grid, content technologies, business transactions, emergency management, and other applications. OASIS open standards offer the potential to lower cost, stimulate innovation, grow global markets, and protect the right of free choice of technology. OASIS members broadly represent the marketplace of public and private sector technology leaders, users, and influencers. The consortium has more than 5,000 participants representing over 600 organizations and individual members in 100 countries.