The integration enables organizations that deal with regulated data to run workloads on AWS by segregating data on the AWS platform from encryption keys. The new integration is said to give AWS customers complete control of data security while helping with continually evolving compliance regulations.
Fortanix argues that one common challenge facing cloud platform customers is proving they comply with privacy and security regulations such as the European Union’s General Data Protection Regulation and the Schrems II ruling that mandate that sensitive data must remain within a region. Using Fortanix DSM as a centralized, external key store, users maintain full custody of their keys with complete control over the data encryption policies within AWS or other cloud platforms.
The controls in Fortanix DSM include defining where the keys reside, access and policy control. The service offers a unified platform with encryption services, multicloud key management, tokenization and more.
Key features of the DSM integration with AWS’ External Key Store include the ability to use workloads with regulated data in AWS by segregating encryption keys from the data used and stored on the cloud. Users fully control encryption keys and enforce granular access control across hybrid multicloud infrastructure.
A focus on simplifying workflows and audits is key to the service, facilitated by Fortanix’s centralized key management. The company says the service is simple to deploy and highly scalable and delivers a unified suite of services, including encryption, multicloud key management, tokenization and more.
“We believe this will give customers more choice and control over their key management lifecycle while leveraging the best-in-class benefits provided by a cloud leader like AWS,” Faiyaz Shahpurwala, chief product and strategy officer at Fortanix, said in a statement.
Fortanix DSM is being offered as a software-as-a-service solution and as a virtual or physical appliance. Further details are available here.