The Oasis consortium have formed a committee to develop
an open standard for managing symmetric encryption cryptographic
keys across the enterprise.
The
Oasis Enterprise
Key Management Infrastructure (EKMI) Technical Committee will
develop a standard, royalty free web services
protocol for managing encryption keys.
Arshad Noor, chair of the Oasis EKMI Technical Committee, said,
"We believe that key management must become as generic a service as
the Domain Name Service (DNS), applicable and accessible to
anything that needs its services."
According to IT analyst Burton Group, the life cycle of
encryption keys is needed to tackle the problem of businesses in
ordre to reduce the complexity of managing different ebcryption
systems.
"Enterprises need to maintain keys in a consistent way across
various applications and business units," said Trent Henry, senior
analyst, Burton Group. "EKMI will be an important step in
addressing this problem in an open, cross-vendor manner."
Microsoft issues critical DNS security updates >>
VoIP security fundamentals >>
Enterprise strategies for protecting data at rest >>
IBM improves data recovery process for TSM users >>
Comment on this article: e-mail
computer.weekly@rbi.co.uk