As a centralized key management system, the primary task of CKMS is to provide lifecycle management of cryptographic keys. This includes all the functions related to importing, generating, exporting and renewing keys, as well as enforcing their correct usage.
CKMS delivers banking grade key lifecycle management for virtually any application throughout a business - from a single platform.
Business process owners are primarily concerned with reducing risk and cost while ensuring compliance with relevant standards. CKMS delivers strong and audit-logged key-management processes to protect from deliberate attacks and human errors, while reducing operational costs and reputational risks.
Technical and security staff are typically concerned about their time performing complex and repetitive manual key-management tasks to maintain the operation of critical systems. CKMS can automate these tasks and liberate skilled staff for higher value tasks.
Easily integrated with both legacy systems and new-build applications, CKMS provides a strong and extensible platform for the protection of high-value keys critical to the safe operation of your business.
CKMS provides both out-of-the-box and custom integrations with a wide range of platforms and applications. Integrations are supported in both ‘off-line’ (manual key exchange) and ‘on-line’ (automatic, seamless) modes.
Entities that keys can be delivered to include:
Integrations with various certificate authorities are also supported.
The flexibility of a key management system can be assessed by the breadth of Key Block formats supported.
A system that puts high value keys under management needs to have the strongest security architecture. Prescriptive standards (e.g. PCI-DSS) mandate particular behavior regarding key life cycle management.
CKMS utilizes specialist hardware (HSMs) to ensure the quality of keys generated and the protection of these keys in storage and in transit. CKMS meets or exceeds the requirements specified via use of:
