DKE Implementation for Microsoft AIP: 1 Day

Entrust

For organizations challenged to develop and deploy DKE Server components enhancing the security of sensitive assets using Double Key Encryption for Azure Information Protection with high assurance.

Microsoft Azure Information Protection enables customers to label their most sensitive Office 365 assets & define permissions to access associated keys & decrypt content. Enterprises can store encrypted data on-premises or in the cloud, remaining unreadable to Microsoft.

With Microsoft Double Key Encryption (DKE) organizations can protect their data with two keys. To access content enterprise users must have both, allowing their organization to maintain full control of their most sensitive assets while keeping them opaque to Microsoft. This Entrust consulting service will help MIP customers ensure the cryptographic keys used by DKE are generated & managed from a trusted, high assurance source under their control.

Entrust DKE for Microsoft AIP is designed to deliver:

• Entrust server software verified by Microsoft

• Integration of customer's HSMs (on-prem or cloud-based) to provide a root of trust for the protection of sensitive customer keys

This Entrust consulting service enable Microsoft Azure customers complete ownership and control of the software that underpins the double key generation process, with no Microsoft software footprint on the customers’ premises.

Applicable to organizations:

• Convinced of the business benefits of Microsoft Office 365

• Convinced that MIP with DKE will address their sensitive data requirements

• Challenged with developing and deploying the DKE Server component

Customers can use existing on-premises or cloud based HSMs high assurance of keys. Their master key that protects the DKE server & key store can be use to enhance an AIP deployment. For redundancy across production & disaster recovery environments, four HSMs are typically deployed. The Entrust DKE implementation supports a range of HSMs, including FIPS 140-2 Level 3 and Common Criteria EAL4+ certified nShield Solo XC (PCIe) & nShield Connect XC (networked) HSMs.

Starting at $10,000

NOTE: Terms, conditions and pricing are custom to each engagement

Member of MISA

https://store-images.s-microsoft.com/image/apps.26932.00153533-6899-4ace-ba33-0d89c732d6f3.d56a27d3-5cb4-41a7-9812-f4ce5829d632.ed38f3fc-90af-40e7-82e2-b4d9429c7ba1
/staticstorage/730bee6/assets/videoOverlay_7299e00c2e43a32cf9fa.png
https://store-images.s-microsoft.com/image/apps.26932.00153533-6899-4ace-ba33-0d89c732d6f3.d56a27d3-5cb4-41a7-9812-f4ce5829d632.ed38f3fc-90af-40e7-82e2-b4d9429c7ba1
/staticstorage/730bee6/assets/videoOverlay_7299e00c2e43a32cf9fa.png
https://store-images.s-microsoft.com/image/apps.33780.00153533-6899-4ace-ba33-0d89c732d6f3.d56a27d3-5cb4-41a7-9812-f4ce5829d632.7d8fbe16-55aa-446e-b96e-66b061c3f928