Dyadic EKM Service Broker for PCF
This documentation describes the Dyadic Enterprise Key Management (EKM) Service Broker for Pivotal Cloud Foundry (PCF). The EKM Service Broker registers a service broker on PCF and exposes its service plans on the Marketplace.
Dyadic Enterprise Key Management (EKM) provides a scalable, key management platform for both virtualized and non-virtualized environments. Dyadic EKM is a software solution that delivers security guarantees comparable to ones that require deployment and integration of the dedicated hardware elements.
Using Dyadic EKM Service Broker for PCF, developers store and manage cryptographic keys with a software solution that provides the same strong levels of security as a hardware solution (Hardware Security Modules).
Keys remain as secure as if they were locked in hardware, because with the Dyadic EKM, key material is never exposed in clear text at any point during the key lifecycle, even when it’s created or in use. Maintain full control of your keys anywhere: on-prem, on the cloud, any key, and any cloud.
Dyadic EKM Service Broker for PCF includes the following key features:
- Hardware-level security without hardware
- Elastic and easily scalable
- Platform agnostic and supports cloud vendors, including but not limited to AWS, Azure, and Rackspace
- Supports all standard RSA, AES, and ECC keys while remaining transparent to the app
- Transparently supports standard crypto-APIs: KMIP, PKCS#11, Microsoft CNG, OpenSSL
- Installation does not disrupt the existing app workflow
- Lifecycle management of crypto-keys including partitioning, BYOK (Bring Your Own Key), generation, renewal, archiving, and revocation
- Dyadic EKM Service Broker for PCF details:
- Version: v1.2
- Release date: February 7, 2017
- Software component version: v1.2.11756.1694
- Compatible Ops Manager version(s): v1.9
- Compatible Elastic Runtime version(s): v1.9
- vSphere support? Yes
- OpenStack support? Yes
- AWS support? Yes
Dyadic EKM Service Broker for PCF has the following requirements:
libapr v1.3 or newer must be installed prior to installing the EKM Client. To install libapr on Red Hat, use the following command:
$ sudo yum install apr
EKM Client runs on the following Operating Systems:
- Windows v7, v8.1, v10 (32) and (64)
- Windows 2008 R2 (64)
- Windows 2012 R2 (64)
- Linux RHEL v6.5 (32) and (64) and later
- Linux CentOS v6.5 (64) and later
- Ubuntu v12.04 (64) and later
There are no license requirements on the client.