Google Cloud External Key Manager (EKM) allows you to create, store, and manage keys in a separate environment from encrypted data, using Futurex’s FIPS 140-2 Level 3 validated key management technology. Using Futurex’s integrated key management service, you can enhance data privacy, access control, and key provenance and maintain control over your own encryption keys.
Strengthen your security posture and maintain 100% control over the keys that encrypt your Google Cloud data.
Fast Migration to the Cloud
With over a dozen data centers across five continents, Futurex’s solution for Google Cloud EKM easily fulfills regional data residency requirements to expedite your migration to the cloud.
Unified Platform for all Your Encryption Needs
Easily integrate your Google Cloud EKM solution into a comprehensive CryptoHub ecosystem. CryptoHub enables your organization to deploy cryptographic processing and key management functionality across your applications, services, and network tools.
The Best Choice for Google Cloud External Key Manager (EKM)
Turbocharged Google Cloud Key Management
As an officially supported External Key Manager (EKM) for Google Cloud, manage encryption for your entire Google ecosystem in a powerful, centralized platform.
Simple Setup
Save time on setup with Futurex’s simple deployment process. Configure users and keys, create a new key ring in Google, and start managing your external keys.
Complete Data Privacy
Gain total control over your encryption keys and enhance data privacy with Futurex’s FIPS 140-2 Level 3 validated solution.
Flexible Deployment Options
Deployment options range from Futurex on-premises hardware to the CryptoHub Cloud, or a hybrid of the two.
Enterprise-wide data protection
Futurex provides a versatile external key service using fully validated HSM and cloud technology. In addition to solutions for Google Cloud External Key Manager, the Futurex CryptoHub offers the following functionality:
Google Cloud EKM allows you to create, store, and manage keys in a separate environment from encrypted data, using Futurex’s FIPS 140-2 Level 3 validated key management technology. This allows you to enhance data privacy, access control, and key provenance and maintain control over your own encryption keys.
How is Futurex’s Google Cloud EKM solution deployed?
Futurex’s Google Cloud EKM solution may be deployed via Futurex on-premises hardware, through the VirtuCrypt Cloud, or a hybrid of the two. All of these are:
Secure: FIPS 140-2 Level 3 validated
Compliant: regional data residency, privacy, and sovereignty mandates
Resilient: deploy high-availability configurations with uptimes of 99.999%
Scalable: expands to meet your needs
Flexible: available on-premises, via Futurex’s cloud, or as a hybrid model
Centralized: integrates with additional 3rdparty applications for key management
How do I set up and enable Google Cloud EKM integration?
Futurex’s solution integrates with all Google Cloud services supported by their KMS.
Log in to the KMES Series 3 interface
Configure users, keys, and JWT
Log in to the Google KMS dashboard
Create a new key ring
Create externally managed keys in Google KMS
Test encryption and decryption operations with externally managed keys
What CMEK integration is supported?
Artifact Registry
BigQuery
Compute Engine
Cloud Logging: Log Router
Cloud Spanner
Cloud SQL
Dataflow Appliance and Dataflow Shuffle
Google Kubernetes Engine: Data on VM disks or Application-layer Secrets
Pub/Sub
Secret Manager
Is there an integration guide for Google Cloud EKM?
Yes, an integration guide for Google Cloud EKM is available for the following applicable devices:
Futurex provides HSMs and key management servers that handle encryption, bring-your-own-key (BYOK). Futurex helps enterprise organizations deploy a modern cloud data security environment that complies with the latest standards and regulations.
