Security News > 2020 > April > Multi-cloud key management and BYOK
To address these challenges, cloud providers have introduced support for Bring Your Own Key that allows organizations to encrypt data inside cloud services with their own keys while still continuing to leverage the cloud provider's native encryption services to protect their data.
Even with BYOK, keys still exist in the cloud providers' key management service.
Because you have a singular goal of key management, many organizations are turning to centralized key management to manage the full lifecycle of cloud keys.
In the BYOK scenario, centralizing key management can offer significant advantages by allowing organizations to consolidate policies and procedures, develop consistent, repeatable, and well-documented practices, and - most importantly - reduce the risks of exposing keys.
Based on the broad trend toward multi-cloud and the challenge of key management in a multi-cloud world, it's safe to assume that other cloud providers will be adding improved for support for external key management.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/xamBrE-sQXw/
Related news
- Strategies for CISOs navigating hybrid and multi-cloud security (source)
- Enhancing visibility for better security in multi-cloud and hybrid environments (source)
- 7 PAM Best Practices to Secure Hybrid and Multi-Cloud Environments (source)
- Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users (source)