Data encryption can be achieved in more than one way, but it is the encryption key management that remains a challenge for many companies hosting resources in the cloud. It can be incredibly easy to suddenly have hundreds or thousands of keys that need managing. In fact, the entire information technology industry accepts that cloud key management is critical to the security and encryption in the cloud.
By integrating your encryption key management solution with your cloud management solution, you can leverage built-in automation features, such as support for automatic file system decryption and backup encryption. This also removes the need for administrators to handle actual keys, which greatly reduces the chances of keys being lost or stolen.
If you are looking for a solution to your cloud key management dilemma, these are some aspects to keep in mind:
- The keys should be securely encrypted themselves.
- Each tenant should have its credentials encrypted with a different set of keys.
- Never store the keys in clear text on a file system.
- Application administrators should only be able to see unencrypted passwords if a user explicitly shares that data with them.
- Always securely delete keys from the memory once you are finished with them.
Regardless of how you decide to handle your encryption key management, plan ahead before you have problems. At Atlantic.Net, we provide secure Cloud Hosting solutions and your data can be stored in an encrypted format using Public Key Encryption (PKE). We’re constantly monitoring and upgrading our systems to ensure that your data is as safe as possible. Try our Cloud Servers risk-free at www.atlantic.net!