Manualshelf

Data Center Fabric Manager Enterprise User Manual v10.3.X (53-1001357-01, November 2009)

ManualsBrandsHP ManualsSoftwareHP B-series Data Center Fabric Manager Enterprise Software
641642643644645646647648649650
DCFM Enterprise User Manual 609
53-1001357-01
Appendix
A
Supported Key Management Systems
In this appendix
Key management systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 609
The NetApp Lifetime Key Manager. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 610
The RSA Key Manager. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 618
The HP Secure Key Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 622
Thales Encryption Manager for Storage. . . . . . . . . . . . . . . . . . . . . . . . . . . . 633
Key management systems
Data is encrypted and decrypted using the same Data encryption key (DEK), so a DEK must be
preserved at least long enough to decrypt the ciphertext that was created using that DEK. The
length of time data is stored before it is retrieved can vary greatly. Some data may be stored for
months, years or decades before it is accessed. To be sure encrypted data remains accessible
DEKs also need to be stored for months, years or decades. This requires the use of a key
management system.
Key management systems are available from several vendors to provide life cycle management for
all DEKs created by the encryption engine. The following key management systems currently
support Brocade encryption switches and blades:
NetApp Lifetime Key Manager (LKM).
RSA Key Manager (RKM).
Hewlett Packard Secure Key Manager (HP SKM).
Thales Encryption Manager for Storage (TEMS), also referred to as the nCipher Key Authority
(NCKA) within operational descriptions in this document.