Enterprise Secure Key Manager

Enterprise Secure Key Manager

The most interoperable and integrated Key Management System in the market, providing a single pane of glass for all cryptographic keys.

Download our Free Trial Version
  • Overview
  • Key Features
  • Description
  • Specifications
  • Models
  • Use Cases

The holistic KMS enabling central access, management, and storage

The holistic KMS enabling central access, management, and storage
The holistic KMS enabling central access, management, and storage

Enterprise Secure Key Manager is Utimaco’s central key management system enabling unified access and management as well as secure storage of all cryptographic keys through one single pane of glass, whether they are utilized on premises or in the cloud.

  • Key Features

  • Description

  • Specifications

Scalable to thousands of nodes, and millions of keys

Scalable to thousands of nodes, and millions of keys

Provides unprecedented capacity for more than 2 million keys, over 25,000 clients, and thousands of ESKM nodes per distributed cluster.

Competitive Application Programming Interfaces (APIs)

Competitive Application Programming Interfaces (APIs)

Comes with various APIs for easy integration, such as OASIS KMIP (Key Management Interoperability Protocol), RESTful interface API, and KMS.

Highest Level of Security on the Hardware Level

Highest Level of Security on the Hardware Level

Delivers a security hardened appliance with embedded u.trust General Purpose HSM Se-Series and CryptoServer General Purpose HSM as well as Se-Series for highest local key protection* and FIPS-compliant architecture**.

Simplified Key Lifecycle Management

Simplified Key Lifecycle Management

Enables unified enterprise key management with reliable policy controls, centralized administration, and comprehensive audit trails.

Cloud and On-Prem Workloads

Cloud and On-Prem Workloads

Offers centralized management and storage for on-premises as well as cloud keys, delivering high security and compliance throughout the complete key lifecycle.

*For ESKM L3 and ESKM L4 (physical)
** FIPS 140-3 Level 2 appliance (pending), FIPS 140-2 L3 and L4 (embedded HSM)

Enterprise Secure Key Manager enables individual key management strategies by providing a single pane of glass for all cryptographic keys, whether on-premises or in the cloud.

Due to its broad integration capabilities, it is acknowledged as trusted solution for a variety of technology partner integrations with companies around the globe, such as Dell, HPE or NetApp.

Enabled through its crypto-agility it is also capable to manage keys created with post quantum cryptography algorithms recommended by NIST and BSI.

Enterprise Key Manager

*: for ESKM L3 and ESKM L4 (physical)

** FIPS 140-3 Level 2 appliance (pending), FIPS 140-2 L3 and L4 (embedded HSM)

image
Cryptographic Interfaces (APIs)

  • Supported Cryptographic Algorithms

  • Custom Integrations

  • Pre-Installed Software

Supported Cryptographic Algorithms

  • Such as AES, 3-Key Triple DES, HMAC, RSA, and ECDSA key types
  • Secure administrator remote access through TLS
  • On-demand backups with SSH key authentication
background image
image

Custom Integrations

  • Simplified RESTful API interface for key CRUD (Create, Read, Update, Delete) operations and crypto
  • Supports open client libraries such as KMIP, OpenKMIP and PyKMIP
  • Conforms with KMIP 1.0 through 2.1 specifications
  • Implements auto-registration with native XML-based KMS protocol
  • NIC Teaming Support
background-image
image

Pre-Installed Software

  • Comprehensive monitoring, recovery, scheduled backups, log rotations, and restore functionality
  • Web browser GUI and Command Line Interface supported
  • SNMP alerts and SIEM log monitoring
  • TLS and on-demand backups with SSH key authentication, for secure administrator remote access
background-image
image
image

Models

Enterprise Secure Key Manager is available in four different models, which can be effortlessly installed and configured. All models offer transparent client licensing, with no hidden costs attached to key volume or scalability.

Contact Sales
ESKM L1 (vESKM)
ESKM L1 (vESKM)

Virtual Enterprise Secure Key Manager (vESKM) is a pre-configured and security hardened virtual appliance providing FIPS 140-2 Level 1 Security and is fully integrable with Utimaco’s CC and VS-NfD certified HSMs.

Virtual Enterprise Secure Key Manager (vESKM) is a pre-configured and security hardened virtual appliance providing FIPS 140-2 Level 1 Security and is fully integrable with Utimaco’s CC and VS-NfD certified HSMs.

ESKM L2
ESKM L2

ESKM L2 is a 1U hardware appliance providing FIPS 140-2 Level 2 security.

ESKM L2 is a 1U hardware appliance providing FIPS 140-2 Level 2 security.

ESKM L3
ESKM L3

ESKM L3 is a 1U hardware appliance providing FIPS 140-2 Level 3 Security via embedded Utimaco General Purpose Hardware Security Module.

ESKM L3 is a 1U hardware appliance providing FIPS 140-2 Level 3 Security via embedded Utimaco General Purpose Hardware Security Module.

ESKM L4
ESKM L4

ESKM L4 is a 1U hardware appliance providing FIPS 140-2 Level 4 Security via embedded Utimaco General Purpose Hardware Security Module.

ESKM L4 is a 1U hardware appliance providing FIPS 140-2 Level 4 Security via embedded Utimaco General Purpose Hardware Security Module.

Use Cases

Data Access Management
Data Access Management
Manage and control which teams, departments, and single employees have access to certain kinds of data.
Learn More
Key management
Key Management Solution
Sensitive data must not only be encrypted, but also kept secure while in motion, in use, or at rest. Reap the benefits of properly managing your encryption keys.
Learn More

Certifications and Compliance

All Enterprise Secure Key Manager models are certified to:

Complaint and Secure

FIPS

Enterprise Secure Key Manager provides compliance from FIPS 140-2 Level 1 to Level 4 depending on the individual model and HSM integration. The certification according to FIPS 140-3 Level 2 is pending.

Complaint and Secure

NIST

Meeting the standards of NIST SP 800-131A

Complaint and Secure

CC

Provides compliance to CC EAL2+

Complaint and Secure

PCI

Provides controls for PCI-DSS

Complaint and Secure

HIPAA

Enables compliance to HIPAA as well as EU data privacy laws, and other regional privacy mandates.

image

Key Management: Also Available as a Service

Learn More

Joint Solution Brief

Dell PowerEdge Server and Utimaco Enterprise Secure Key Manager for Centralized Storage and Management of Server Encryption Keys

The integration of Enterprise Secure Key Manager enables centralized and transparent management and control of all keys used to encrypt data stored on Dell PowerEdge servers.

Read More

Ready to Secure Your Digital Future?

Contact Sales

Resources

Datasheet
ESKM Datasheet Teaser

Utimaco's Enterprise Secure Key Manager is the most interoperable and integrated Key Manager in the Market, providing a single pane of glass of all cryptographic keys.

Download
Enterprise Secure Key Manager

Utimaco's Enterprise Secure Key Manager is the most interoperable and integrated Key Manager in the Market, providing a single pane of glass of all cryptographic keys.

Download
Try Our Simulator

Related Products

u.trust General Purpose HSM

u.trust General Purpose HSM

It delivers scalable multi-tenancy functionality, superior performance, and customizability for a wide range of applications.

Learn More
CryptoServer General Purpose HSM CSe-Series

CryptoServer General Purpose HSM CSe-Series

The only Hardware Security Module in the market that is certified according to FIPS 140-2 Level 4 – meeting the highest physical security requirements.

Learn More
CryptoServer General Purpose HSM

CryptoServer General Purpose HSM

The Hardware Security Module specialized for eIDAS-compliance and VS-NfD classified use cases.

Learn More
Atalla AT1000 Payment HSM

Atalla AT1000 Payment HSM

The leading Payment Hardware Security Module in the industry, designed for secure and compliant non-cash retail payment transactions and cardholder authentication.

Learn More
General Purpose HSM as a Service

General Purpose HSM as a Service

Utimaco’s General Purpose HSM as a Service is providing access to a FIPS 140-2 Level 3 HSM hosted by Utimaco in a secure and certified datacenter.

Learn More

How can we help you?

Talk to one of our specialists and find out how Utimaco can support you today.
You have selected two different types of downloads, so you need to submit different forms which you can select via the two tabs.

Your download request(s):

    By submitting below form you will receive links for your selected downloads.

    Your download request(s):

      For this type of documents, your e-mail address needs to be verified. You will receive the links for your selected downloads via e-mail after submitting below form.

      About Utimaco's Downloads

      Visit our Downloads section and select from resources such as brochures, data sheets, white papers and much more. You can view and save almost all of them directly (by clicking the download button).

      For some documents, your e-mail address needs to be verified. The button contains an e-mail icon.

      Download via e-mail

       

      A click on such a button opens an online form which we kindly ask you to fill and submit. You can collect several downloads of this type and receive the links via e-mail by simply submitting one form for all of them. Your current collection is empty.

       

      How can we help you futher?