First, it makes sense for an org to rely on a cloud provider's implicit key management until they are of scale to have InfoSec FTEs.
Second, some cloud consumers use multiple cloud providers (AWS, Rackspace), while some use a cloud provider via multiple regions. So, as always it is about the requirements and budget.
With that said, here are some options:
- AWS KMS
- Rackspace / OpenStack Cloud Keep
- Vormetric
- KeyNexus
- Intuit
- Microsoft
- Oracle
As usual, there is no silver bullet, though crypto is something that a org certainly needs to do correctly.
No comments:
Post a Comment