Fortanix for AWS

Secure, manage, and automate native AWS KMS Keys with full key lifecycle management as a service across on-premises and multicloud environments.

Overview

Cloud computing’s meteoric ascent to dominance is a story known to all. However, the market for encryption is mapping a similar surge, and with more encrypted data we have more encryption keys to manage. “Bring-your-own-key” or BYOK is a practical and permanent solution to the lingering trust, security, and control conundrum between the CSP and the consumer. It places the keys to the cloud back in the customer’s hands by letting the user create, back up, and provide their encryption keys—paving the way for CIOs to regain the control they conceded to their cloud providers previously.

What we do

Integrated Data Security Platform

Fortanix provides a Data Security as a Service (DSaaS) platform with integrated hardware security module (HSM), key management, encryption, shared secrets, and tokenization capabilities.

Full Key Lifecycle Management

Experience full key lifecycle management as a service to ensure secure and consistent key management across on-premises and multicloud environments, including bring your own key (BYOK) and bring your own key management service (BYOKMS).

Support for AWS Nitro Enclaves

Enterprises can more easily preserve privacy and securely process sensitive data and applications within AWS Nitro Enclaves using Fortanix Data Security Manager and Fortanix Confidential Computing Manager.

Featured Resource

Webinar: Fortanix & AWS Secure Your Sensitive Data in the Cloud

Learn how to securely move your data to the AWS cloud while always maintaining control of your encryption keys and data.

Watch Now

Benefits

Get full control over keys

Customers can bring or import a master key which the AWS stores within its KMS—allowing them to retain ownership of the master key material and have greater control over the data stored in AWS.

Easily manage AWS key states and operations

Fortanix helps customers easily manage the AWS key states and operations as the same nomenclature of AWS KMS is used in Fortanix AWS KMS integrations. Also, a customer can author AWS key policies from Fortanix.

Stop data breaches with kill -switch

Gives you a central kill -switch and a fully managed disaster recovery for all your keys. Key material can be deleted from Fortanix to make an AWS key in “Pending Import” state and stop data breaches. Key material can also be reclaimed by importing it back into the cloud KMS.

Manage multicloud keys from a single pane

Fortanix Data Security Manager (DSM) allows you to manage and control multi-cloud keys in a completely cloud-agnostic way. Organizations can keep full custody of their keys in a FIPS 140-2 level 3 certified HSM.