Manualshelf

Data Center Fabric Manager Professional Plus User Manual - Supporting DCFM 10.3.x (53-1001356-01, October 2009)

ManualsBrandsHP ManualsStorageHP 1606 FCIP 4-pt Enabled 8Gb FC 2-pt Enabled 1GbE Base Switch
601602603604605606607608609610
DCFM Professional Plus User Manual 567
53-1001356-01
DRAFT: BROCADE CONFIDENTIAL
Appendix
A
Supported Key Management Systems
In this appendix
Key management systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 567
The NetApp Lifetime Key Manager. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 568
The RSA Key Manager. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 576
The HP Secure Key Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 580
Thales Encryption Manager for Storage. . . . . . . . . . . . . . . . . . . . . . . . . . . . 591
Key management systems
Data is encrypted and decrypted using the same Data encryption key (DEK), so a DEK must be
preserved at least long enough to decrypt the ciphertext that was created using that DEK. The
length of time data is stored before it is retrieved can vary greatly. Some data may be stored for
months, years or decades before it is accessed. To be sure encrypted data remains accessible
DEKs also need to be stored for months, years or decades. This requires the use of a key
management system.
Key management systems are available from several vendors to provide life cycle management for
all DEKs created by the encryption engine. The following key management systems currently
support Brocade encryption switches and blades:
NetApp Lifetime Key Manager (LKM).
RSA Key Manager (RKM).
Hewlett Packard Secure Key Manager (HP SKM).
Thales Encryption Manager for Storage (TEMS), also referred to as the nCipher Key Authority
(NCKA) within operational descriptions in this document.
.