Key Management Service (KMS)
Manage all your encryption keys in one place
Elevate your security and efficiently manage your encryption keys with OVHcloud’s Key Management Service (KMS).
Designed for seamless integration, our KMS enables you to centrally manage encryption keys for all your applications, whether they are hosted in the cloud or on-premises. This maximises data security and streamlines security operations.
- Improved security for your application
- Enhanced productivity
Instant data protection with easy one-click encryption
Simplify encryption and secure your data instantly with a single click on your compatible product, without compromising protection.
Enhanced security with complete key access management
Manage your encryption keys with unparalleled access control, to enhance security and compliance throughout your organisation.
Your keys: Strengthen data privacy with Bring Your Own Keys (BYOK)
Maintain full control over the lifecycle of your encryption keys and use them on all your applications – whether they are on OVHcloud, a third-party CSP or on-premises. (coming soon)
Predictable pricing model – Queries included at no extra cost
Enjoy transparency with our predictable pricing model; fixed monthly pricing per key with no query fees, which offers budget predictability and cost efficiency.
Key features
Choice of location: Choose a preferred region to store your encryption keys
Gain complete control over the geographic location of your encryption keys for better application performance and sovereignty. With our regionalisation feature, you can comply with local data protection regulations, and reduce latency for your applications. This feature not only ensures compliance but also gives you the flexibility to strategically place your keys in regions that align with your organisational and operational needs.
Certified security compliance: ISO27001 & FIPS 140-3
OVHcloud is committed to adhering to the highest market standards, including obtaining ISO 27001 and FIPS 140-3 certifications. These certifications underscore our focus on security and reliability, and affirm that our Key Management Service (KMS) is built on established security practices. Our goal is to give you peace of mind by securely managing your encryption keys in a certified infrastructure that meets globally recognised security standards.
Increased interoperability with Key Management Interoperability Protocol (KMIP)
Seamlessly integrate your favourite applications and ensure their compatibility through the Key Management Interoperability Protocol (KMIP). This feature makes key management process more efficient, as it allows you to smoothly exchange encryption keys between your applications and OVHcloud‘s KMS. With KMIP support, OVHcloud KMS, simplifies key management across various IT environments, enabling you to easily apply strong encryption on all your applications, whether they are hosted on OVHcloud or on-premises.
Use cases
Seamless encryption for your S3 Object Storage and easy key management
Easy, maintenance-free approach for encrypting data on your OVHcloud Object Storage space, without the need to deal with the complexities of key management.
Users can easily encrypt their data by opting for Server-Side Encryption with S3-Managed Keys. With this option, your data is encrypted in real time, and OVHcloud manages the encryption keys. This provides users with robust data protection to keep their data safe and secure, without the burden of key management.
Hands-on lifecycle management of keys for your VMware on OVHcloud platform
Encrypt your OVHcloud products with just a few clicks, while retaining complete control over the encryption keys on your VMware platform.
You can leverage OVHcloud’s Key Management Service (KMS) to manage the lifecycle of your encryption keys. This involves creating, rotating, and retiring keys as needed. Users can achieve a balance between autonomy and ease by integrating KMS with their VMware on OVHcloud setup, as it allows them to encrypt their data and have control over key usage.
Advanced key management for on-premises integration
When developing applications for end customers, Managed Service Providers (MSPs) often prioritise encryption to ensure data security and compliance. To develop applications, you will need a secure and adaptable way to incorporate encryption features.
With REST API, you can leverage OVHcloud’s KMS to create, manage, and use encryption keys directly within your application development workflow. Moreover, you can seamlessly integrate client-specific encryption requirements into the apps by accessing the client's encryption keys stored in OVHcloud KMS.
Ready to get started?
Create an account and launch your KMS in minutes
