Alliance Key Manager Now Supports Encryption Key Management for MongoDB Enterprise Advanced - Key Management without Application Changes
Olympia, WA (PRWEB) May 09, 2016 -- Townsend Security today announced Alliance Key Manager for MongoDB, an affordable FIPS 140-2 compliant encryption key manager to help users of the MongoDB Enterprise Advanced database meet compliance requirements (PCI DSS, HIPAA, FFIEC, EU GDPR, etc.) and security best practices. MongoDB Enterprise Advanced users can now easily protect private data like customer PII and intellectual property without modifying existing applications or the database.
While MongoDB Enterprise Advanced offers industry standard 256-bit AES encryption, it is recommended to use an external encryption key management solution like Alliance Key Manager for MongoDB to manage the encryption keys. Alliance Key Manager uses the industry standard Key Management Interoperability Protocol (KMIP) to access encryption keys and MongoDB customers can deploy the solution and install the PKI certificates on the database server to easily begin protecting encryption keys.
"Hundreds of organizations worldwide, including more than a third of the Fortune 100, use MongoDB Enterprise Advanced - which means there is likely a massive amount of private data that needs to be encrypted," said Patrick Townsend, CEO of Townsend Security. "While MongoDB Enterprise Advanced provides encryption support directly in the database engine, users still need a centralized encryption key manager to secure their encryption keys."
By using native MongoDB command line operations, encryption is easy to deploy and keys can automatically be protected by Townsend Security’s Alliance Key Manager. MongoDB customers can deploy the solution as a hardware security module (HSM), VMware virtual machine, or in the cloud as a native AWS EC2 instance or Microsoft Azure virtual machine. Alliance Key Manager supports seamless migration and hybrid implementations.
“We know that encryption and key management has a reputation for being difficult. I think that MongoDB Enterprise Advanced users will be delighted to find how easy and affordable it is to deploy an enterprise-class centralized encryption key management solution,” continued Townsend. “The MongoDB technical team did a great job by basing encryption key management on the KMIP standard. Deploying Alliance Key Manager takes just a few minutes and helps customers achieve rapid compliance. By implementing encryption in the database itself MongoDB eliminates the need for third party file or volume level encryption products and provides an optimized experience for their customers. This is the way encryption and key management is supposed to work.”
Townsend Security works with MongoDB partners to help them provide secure solutions for their end-customers. With a complete range of key management solutions including dedicated HSMs, VMware virtual machines, and AWS and Microsoft Azure cloud instances, partners have complete flexibility and a range of pricing options for their customers. "MongoDB partners have customers who want a variety of key management solutions to choose from. Alliance Key Manager is head and shoulders above their existing options in scalability, flexibility, and overall cost," said Liz Townsend, Director of Business Development, Townsend Security. “This integration will really open up doors for end-users to secure MongoDB and meet compliance regulations without the additional barriers or poor partner engagement and complex pricing structures. We really make it easy on our partners.”
Alliance Key Manager for MongDB is available for a free 30-day evaluation.
---
About Alliance Key Manager
Townsend Security's Alliance Key Manager allows enterprises to effectively encrypt data and meet security requirements in less time and at a lower cost. The solution provides full life-cycle management of encryption keys for a wide variety of applications to help organizations meet PCI DSS, HIPAA, and PII compliance. Available at no extra charge, Townsend Security includes ready-to-use security applications (SQL Server, Drupal, more), SDKs, and sample code (Java, C#, Perl, PHP, more) for developers. Additionally, there are never extra fees for deploying client-side applications.
About Townsend Security
Townsend Security creates data privacy solutions that help organizations meet evolving compliance requirements and mitigate the risk of data breaches and cyber-attacks. Companies worldwide trust Townsend Security’s NIST and FIPS 140-2 compliant solutions to meet the encryption and key management requirements in PCI DSS, HIPAA/HITECH, FISMA, GLBA/FFIEC, SOX, and other regulatory compliance requirements. Learn more at http://www.townsendsecurity.com.
###
Luke Probasco, Townsend Security Inc., http://www.townsendsecurity.com, +1 (360) 359-4400, [email protected]
Share this article