Fortanix for AWS

Secure, manage, and automate native AWS KMS Keys with full key lifecycle management as a service across on-premises and multicloud environments.

video thumb

Overview

Cloud computing’s meteoric ascent to dominance is a story known to all. However, the market for encryption is mapping a similar surge, and with more encrypted data we have more encryption keys to manage. “Bring-your-own-key” or BYOK is a practical and permanent solution to the lingering trust, security, and control conundrum between the CSP and the consumer. It places the keys to the cloud back in the customer’s hands by letting the user create, back up, and provide their encryption keys—paving the way for CIOs to regain the control they conceded to their cloud providers previously.
overview image

What we do

Integrated Data Security Platform
Integrated Data Security Platform
Fortanix provides a Data Security as a Service (DSaaS) platform with integrated hardware security module (HSM), key management, encryption, shared secrets, and tokenization capabilities.
Full Key Lifecycle Management
Full Key Lifecycle Management
Experience full key lifecycle management as a service to ensure secure and consistent key management across on-premises and multicloud environments, including bring your own key (BYOK) and bring your own key management service (BYOKMS).
Support for AWS Nitro Enclaves
Support for AWS Nitro Enclaves
Enterprises can more easily preserve privacy and securely process sensitive data and applications within AWS Nitro Enclaves using Fortanix Data Security Manager and Fortanix Confidential Computing Manager.

Benefits

Get full control over keys

Customers can bring or import a master key which the AWS stores within its KMS—allowing them to retain ownership of the master key material and have greater control over the data stored in AWS.

Get full control over keys

Easily manage AWS key states and operations

Fortanix helps customers easily manage the AWS key states and operations as the same nomenclature of AWS KMS is used in Fortanix AWS KMS integrations. Also, a customer can author AWS key policies from Fortanix.

Easily manage AWS key states and operations

Stop data breaches with kill -switch

Gives you a central kill -switch and a fully managed disaster recovery for all your keys. Key material can be deleted from Fortanix to make an AWS key in “Pending Import” state and stop data breaches. Key material can also be reclaimed by importing it back into the cloud KMS.

Stop data breaches with kill -switch

Manage multicloud keys from a single pane

Fortanix Data Security Manager (DSM) allows you to manage and control multi-cloud keys in a completely cloud-agnostic way. Organizations can keep full custody of their keys in a FIPS 140-2 level 3 certified HSM.

Manage multicloud keys from a single pane

Get centralized control and audit of keys

Fortanix DSM enables organizations to apply central control and audit the keys using quorum approvals and audit logs.

Get centralized control and audit of keys