CertiVox has announced the official launch of its automated, hosted encryption key management service SkyKey.
According to the company, it is putting secure control of data into the hands of users but without costly proxies and certificates, the cumbersome PKI infrastructure or manual scripting. It said that the Infrastructure-as-a-Service (IaaS) solution enables developers to embed encryption key management into systems, communication layers and applications.
The solution is supplied as an API with an optional open source software development kit (SDK) for added flexibility, and these can be used to embed SkyKey into applications.
CertiVox said that SkyKey creates random encryption keys, which are encapsulated using an identity that is authorised to access the key and that identity is then used to create a key manifest and only authorised identities that are intended to decrypt the data can de-encapsulate and access the encryption key.
Brian Spector, CEO of CertiVox, said: “Why do you never see a bank using a file sharing service to communicate with you? Because vendors of these and many other cloud services can't get round the technical problem of providing encryption key management that is secure, scalable, automatic and meets their customers' legal on-premise requirement.
“SkyKey certainly addresses these needs, but its impact will go much further. PKI won't be able to address the ‘Internet of Things' come 2015, unless it finds a way to automatically manage encryption keys. That way is SkyKey.”