Cloud consumers face a choice: using the cloud service provider’s (CSP) encryption or bringing their own encryption. Cloud providers make their native encryption offerings as simple as they can. For many providers, the cloud consumer can simply turn on encryption and not bother with the encryption keys. However, keeping the keys secure and separate from the data store is essential to securing the data, because encrypted data can be decrypted if the keys are available. Arguably, securely managing the keys is what digital security is all about.
Download this White Paper to learn how agencies can manage their cloud provider encryption keys separately from the CSP holding the encrypted data.