IBM is launching a new service to help customers manage their data encryption keys in a hybrid cloud environment.
Unified Key Orchestrator lets customers integrate all security key-management systems into one managed service that's backed by Big Blue’s Hardware Security Module. HSM is IBM’s system that protects against physical or logical attacks and has special hardware to perform cryptographic operations and protect keys.
Available from IBM Cloud, Unified Key Orchestrator lets customers maintain visibility and control over who has access to their critical data, while running workloads across hybrid or multicloud cloud environments. In addition, with a single, secure, cloud-based view of an organization’s crypto keys, enterprises can create and revoke keys for their data across multiple clouds. At the same time, companies no longer need to rely on security experts with specialized knowledge of each individual cloud to handle security operations, according to IBM.
Considering the average company is using more than eight or nine cloud environments, they risk greater exposure to malicious threats that can compromise data, IBM stated. Dealing with multiple clouds means handling multiple cryptographic keys in multiple key management services.
With Unified Key Orchestrator, IBM says customers have one point of control for multiple keys in multiple clouds and secure backup of all keys.
By making it possible to securely manage encryption keys with a single point of control – including across other public clouds – IBM is proving that what it cares most about is clients and what truly keeps them up at night, not where their data is stored, said Frank Dickson, vice president of security & trust with IDC, in a statement. “Unified Key Orchestrator also eases the management burden which is aggravated by the security talent shortage by making it possible for businesses to demonstrate compliance across multiple cloud platforms – which can be incredibly complex – faster and easier," he said.