Alliance Key Manager for VMware Cloud on AWS

Alliance Key Manager for VMware Cloud on AWS
800.357.1019
800.357.1019

By running Alliance Key Manager for VMware Cloud on AWS, enterprises can protect private information in the applications and databases with a dedicated key manager - with no access to encryption keys by Amazon Web Services.

Encryption and Key Management in VMware vCloud on AWS

As VMware users turn to vCloud on AWS, they bring their sensitive data with them – customer names, email addresses and other personally identifiable information (PII). While compliance regulations require protecting this information, encrypting this data has been a challenge for organizations who want the flexibility and security of a native VMware encryption key manager. By deploying Alliance Key Manager for VMware as a vCloud instance, customers can achieve their security and efficiency goals in a cloud environment. 

Meet Compliance Requirements

For VMware users who need to meet compliance, the solution has been validated for PCI DSS in VMware by Coalfire, a PCI-qualified QSA assessor and independent IT and audit firm.  Enterprises across all industry verticals, regardless of where they deploy VMware, are subject to PCI DSS compliance if they process electronic payments.  For VMware customers, FIPS 140-2 compliant encryption and key management are a key defense for data security.  Additionally, Alliance Key Manager for VMware can also help businesses meet other compliance regulations such as GDPR, HIPAA, GLBA/FFIEC, FISMA, etc.  

Key Management Interoperability Protocol (KMIP) Support

Meeting the OASIS KMIP standard enables interoperable communication between cryptographic environments and encryption key managers – which reduces the operational, training, and infrastructure costs for businesses. Applications and databases that support KMIP can deploy Alliance Key Manager to easily begin protecting encryption keys. 

Enterprise Compatibility

Alliance Key Manager for VMware Cloud on AWS supports all major enterprise platforms and offers a wide variety of client side applications.  With over 3,000 customers worldwide protecting information in Microsoft SQL Server, MongoDB, Oracle, and other databases, Alliance Key Manager for VMware Cloud on AWS is an easy to deploy, native centralized key management solution for VMware users.

Sample Client Binary and Source Applications

Binary key retrieval and encryption libraries are provided for all major operating systems to enable rapid deployment of encryption key retrieval or on-device encryption applications. Sample source code is also provided for Java, .NET (C#), C, and RPG applications. 

Complete Audit Trail

Built in logging allows administrators to track all key retrieval, key management, and system activity. Reports can be sent automatically to central log management, alerting facilities, or SIEM products for a timely and permanent record of activity. 

VMware Ready Status

Alliance Key Manager for VMware Cloud on AWS has achieved VMware Ready status. This designation indicates that after a detailed validation process Alliance Key Manager for VMware Cloud on AWS has achieved VMware’s highest level of endorsement and is supported on VMware ESXi  (all supported versions) for production environments.       

Pricing Options for Your Needs & Budget

With subscription and perpetual licensed options for the Alliance Key Manager, we have licensing options to fit your needs and budget. Additionally, there are never extra fees for deploying additional nodes, databases or applications - giving your encryption strategy the freedom to scale without having to come up with budget for added licenses.

VMware Technology Alliance Partner

VMware ReadyTownsend Security is a VMware Technology Alliance Partner (TAP) and Alliance Key Manager for VMware has achieved VMware Ready status.  This designation indicates that after a detailed validation process Alliance Key Manager for VMware Cloud on AWS has achieved VMware's highest level of endorsement.

Encryption Services

128-bit AES encryption and decryption, ECB mode

192-bit AES encryption and decryption, ECB mode

256-bit AES encryption and decryption, ECB mode

128-bit AES encryption and decryption, CBC mode

192-bit AES encryption and decryption, CBC mode

256-bit AES encryption and decryption, CBC mode

Key Sizes

AES 128, 192, 256 bit symmetric keys

RSA 1024,2048, 3072, 4096 bit asymmetric keys

Supported Environments

VMware ESX

VMware vSphere (ESXi)

eBooks

Encryption and Key Management for VMware - The Definitive Guide

To provide insight on how to best deploy encryption and encryption key management in VMware, this comprehensive guide overviews the landscape for securing data in a virtual world.

Shift Left - Designing Applications for Encryption & Key Management

Learn how to approach data security (encryption and key management) both from a design point of view as well as from an implementation point of view.

Solution Briefs

Alliance Key Manager for VMware

Using the same FIPS 140-2 compliant technology that is in Townsend Security’s (HSM), Alliance Key Manager for VMware enables enterprises to meet compliance requirements and accelerate deployment of mission critical security technology.

Alliance Key Manager for VMware Cloud on AWS - Joint Solution Brief

Dedicated encryption key management in VMware Cloud on AWS – with no access to encryption keys by cloud service provider (CSP).

Securing Alliance Key Manager for VMware

This paper discusses general security recommendations for the VMware environment as a whole and is based on guidance provided by standards organizations (Payment Card Industry, etc.), VMware, and independent security assessors.

Datasheets

Alliance Key Manager

Alliance Key Manager works with all major business platforms, cloud platforms, and leading encryption applications.

White Papers

MySQL and VMware - Encryption and Key Management for Developers

Whether you develop on Linux or Windows, you can achieve a compliant implementation of encryption with the MySQL database and variations of MySQL like MariaDB.

Security Challenges and Considerations with VMware Encryption & Key Management

Applying security in a VMware environment introduces unique challenges.  When systems are no longer dedicated and share a common physical architecture, the issues of access and encryption controls is critical.

VMware Product Applicability Guide (PAG) for PCI DSS version 3.0

Working with Coalfire, a PCI-qualified QSA assessor and independent IT audit firm, Townsend Security has released of a PCI DSS Product Applicability Guide for Alliance Key Manager for VMware.