In an increasingly interconnected world, data breaches grab headlines. The security of sensitive information is vital; and new requirements and regulatory bodies such as the Payment Card Industry Data Security Standard (PCI-DSS), Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley (SOX) create challenges for enterprises that use encryption to protect their information. As encryption becomes more widely adopted, organizations also must contend with an evergrowing set of encryption keys. Effective management of these keys is essential to ensure both the availability and security of the encrypted information. Centralized management of keys and certificates is necessary to perform the complex tasks related to key and certificate generation, renewal, backup and recovery.
The IBM Enterprise Key Management Foundation (EKMF) is a flexible and highly secure key management system for the enterprise. It provides centralized key management on IBM zEnterprise® and distributed platforms for streamlined, efficient and secure key and certificate management operations. The EKMF is well-suited for banks, payment card processors and other businesses that must meet EMV® and payment card industry (PCI) requirements. EKMF serves as foundation on which remote crypto solutions and analytics for the cryptographic infrastructure can be provided.
The IBM EKMF solution that is used by major financial customers worldwide is the engine in the EKMF. IBM EKMF is developed by IBM EMEA Crypto Competence Center in close cooperation with many of these customers. The EKMF functionality is continuously being extended and adapted to customer needs, industry standards, and regulatory initiatives.