Nutanix Key Management Made Easy by New Partnership
A Partnership with KeyNexus has Improved Nutanix Key Management
This week, we want to explore a use case that also gives us the opportunity to announce an exciting new partnership that KeyNexus has established with Nutanix. Nutanix is a cloud computing company that specializes in hyper-converged infrastructure appliances and software-defined storage. Hyper-converged infrastructures help to simplify and centralize enterprise datacenter systems, and it is estimated that by 2019 they will make up 35% of the total integrated system market. So, how can you utilize KeyNexus to improve Nutanix key management and optimize a Nutanix-based IT infrastructure?
Let’s take the hypothetical example of Alias National Bank (ANB). ANB has decided to upgrade its IT infrastructure, including virtualizing its software systems and integrating their storage, server and networking systems. To do this, ANB has chosen Nutanix’s cutting edge products, which provide a full infrastructure stack that integrates compute, virtualization, storage, networking and security. Because they store customers’ financial information, ANB will also utilize Nutanix’s self-encrypting drives (SEDs) to encrypt data-at-rest to meet regulatory requirements. These drives protect data at all times, make the data inaccessible in the event of node or drive theft, and provide the ability to securely destroy all data on the drives. This provides an optimized security option in a particularly sensitive industry. But, because of the further regulatory requirement to separate the encryption and key management roles, ANB must use an external key manager to meet security and compliance needs. To help with this, Nutanix has adopted key management interoperability protocol by providing a KMIP client, meaning that ANB would need to find a key management service that has a KMIP server to efficiently integrate with Nutanix’s SEDs.
Nutanix’s partnership with KeyNexus is intended precisely to address the dilemmas that ANB faces in fully implementing data-at-rest encryption. KeyNexus’ Unified Key Manager (UKM) offers a pioneering encryption key management platform with FIPS 140-2 compliance, which meets the base regulatory encryption requirements. But our UKM also complies with other regulatory requirements ANB would face, including Payment Card Industry Data Security Standard (PCI-DSS) and the Gramm-Leach-Bliley Act (GLBA) in the United States, as well as the General Data Protection Regulation (GDPR), which covers financial and other data for all EU citizens. KeyNexus UKM would provide storage and management functionality for the encryption keys generated on Nutanix SEDs, with the capability of scaling to ANB’s needs. Additionally, by providing a fully compliant KMIP server with cutting-edge key lifecycle management, ANB could use our UKM to seamlessly communicate with Nutanix’s software, minimizing the operational and training costs ANB would incur with non-KMIP compatible encryption and key management options. Our KMIP Server would also simplify use, offering easy-to-setup and use administrative controls and enabling comprehensive use of KMIP objects, attributes, operations, message elements and authentication methods. It also has the additional advantage of offering advanced high availability architecture ensuring redundancy across ANB’s infrastructure to minimize latency and provide disaster recovery.
Ultimately, for enterprises using Nutanix, KeyNexus offers easy integration and a fully compliant key management solution. For more information on the KeyNexus-Nutanix integration, download our Nutanix integration brief. For information on how KeyNexus can fit your specific Nutanix key management use case, contact us or request a demo.