Customer demand for encryption systems that support proven standards has never been higher. In appreciation of that, RSA Conference 2014 is showcasing interoperability demos for two of the most widely-adopted security standards from OASIS. The Key Management Interoperability Protocol (KMIP) and the Public-Key Cryptography Standard (PKCS) #11 are being featured in two separate demonstrations involving eleven companies. These organizations are delivering proven solutions that protect data, both in storage systems and in the cloud, across diverse infrastructures.
“As the need to encrypt data at rest, in-transit and in the cloud increases, cryptographic devices and enterprise key management become indispensable components of any enterprise. KMIP and PKCS #11—two separate, but complementary security standards—enable vendor-agnostic implementations that give CIOs, CSOs, and CTOs the freedom to select best-of-breed solutions knowing that they will interoperate seamlessly,” said Tony Cox of Cryptsoft, who coordinated the OASIS interoperability demonstrations for RSA 2014. “The OASIS Interop brings together systems ranging from enterprise key managers and storage appliances to HSMs, security tokens and cryptographic toolkits. It’s truly a ground-breaking event.”
KMIP Interop
KMIP enables communication between encryption systems and a broad range of new and legacy enterprise deployments, including applications, databases, and storage infrastructure. At the RSA Conference 2014, Cryptsoft, Dell, HP, IBM, P6R, SafeNet, Thales e-Security, and Vormetric are demonstrating KMIP across the full encryption key management lifecycle including creating, registering, locating, retrieving, deleting, and transferring symmetric and asymmetric keys and certificates between systems. Support for all three versions of KMIP (1.2, 1.1, and 1.0) is shown.
PKCS #11 Interop
PKCS #11 is an application programming interface (API) that enables interaction with cryptographic devices in multi-vendor environments. At the RSA Conference 2014, Cryptosense, Cryptsoft, Feitian, Oracle and Vormetric perform a range of PKCS #11 cryptographic functions including generating, finding, and using cryptographic objects with combinations of one or more symmetric keys, asymmetric keys, or certificates between vendor systems.
The OASIS KMIP and PKCS #11 Interops are being held at RSA Conference 2014 in Booth 1909 from 24-27 February.
Support for KMIP and PKCS #11 Demos
Cryptsoft
“Encryption of enterprise data has never been more
important, and the use of the OASIS KMIP and PKCS #11 standards as the
core of enterprise data security implementations delivers real-world
interoperability. Using KMIP for key lifecycle management and PKCS #11
for hardware security module interaction delivers the best of both
worlds. As a major OEM technology supplier, the rigor of the OASIS
standards process helps ensure true interoperability is a reality for
our customers.”
--Tim Hudson, Chief Security Architect, Cryptsoft
HP
“The OASIS KMIP standard for cryptographic key management
interoperability enables organizations to deploy higher levels of
security and protect valuable data across a wide range of security
infrastructures and solutions. HP is proud to be an original KMIP
sponsor and to support full KMIP compliance with HP Enterprise Secure
Key Manager 4.0 and HP Storage KMIP-enabled solutions, providing
customer choice and confidence in our commitment to interoperability.”
--Albert
Biketi, General Manager, Atalla, Enterprise Security Products, HP
IBM
“IBM is proud to participate in the OASIS KMIP Interop at RSA
Conference 2014. KMIP has been and continues to be an important standard
for our customers and for the industry. As part of the OASIS KMIP
Technical Committee, IBM is bringing continuity, leadership, expertise,
and strong innovation to encryption key management – a critical
component to an overall system of data privacy and protection for cloud,
mobile, big data and social environments.”
–Rick Robinson,
Product Manager, Encryption and Key Management, IBM
Oracle
“Oracle Solaris is committed to protecting customer data,
not just in the operating system, but across the entire data center from
hardware to application. We are proud to provide cryptographic
leadership for the next generation of the OASIS PKCS #11 standard and
are pleased to participate in the OASIS PKCS #11 Interoperability demo
at RSA 2014 showcasing our current and future data protection
mechanisms.”
--Valerie Fenwick, Oracle, co-chair OASIS PKCS 11
Technical Committee
SafeNet
“With all of the recent data breaches in the news, we know
that encryption and proper key management are the backbones of strong
security solutions. The OASIS partnership is important for the industry
to assist in interoperability with security solutions that help protect
organizations. As a leader, SafeNet is proud to be working with KMIP in
the Enterprise Key Management market, in delivering a solution with the
most integrated KMIP end points on the market today. SafeNet brings
valuable knowledge to OASIS, and we’re excited to showcase this through
the interoperability demos.”
--Mark Yakabuski, VP Crypto
Management, SafeNet
Thales e-Security
"Now in its fourth year, the KMIP standard has
become a de facto requirement for organizations around the world as they
seek to execute against their key management strategy. Once again,
Thales is delighted demonstrate its commitment to KMIP and to showcase
keyAuthority, its own high assurance key manager. These types of events
drive overall awareness, reinforce customer confidence, and provide an
invaluable opportunity for the industry to come in the spirit of
collaboration."
--Bob Lockhart, Chief Solutions Architect
Key Management, Thales e-Security
Vormetric
“PKCS #11 and KMIP are widely recognized as
leading industry standard protocols for helping organizations secure
data, transactions and communications. The use of proven, open standards
is good for the security ecosystem, for vendors, and for customers.
Vormetric is delighted to be able demonstrate support for both of these
standards at the RSA Conference.”
–Mike Yoder, Senior Security
Architect, Vormetric
Additional information:
OASIS KMIP Technical Committee
http://www.oasis-open.org/committees/kmip/
OASIS PKCS 11 Technical Committee
http://www.oasis-open.org/committees/pkcs11/
About OASIS:
OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, international consortium that drives the development, convergence and adoption of open standards for the global information society. OASIS promotes industry consensus and produces worldwide standards for security, cloud computing, Web services, the Smart Grid, content technologies, business transactions, emergency management, and other applications. OASIS open standards offer the potential to lower cost, stimulate innovation, grow global markets, and protect the right of free choice of technology. OASIS members broadly represent the marketplace of public and private sector technology leaders, users, and influencers. The consortium has more than 5,000 participants representing over 600 organizations and individual members in 100 countries.
Contacts:
Carol Geyer, Senior Director of Communications and
Development, +1-941-284-0403
carol.geyer@oasis-open.org