On-the-fly encryption/decryption keys solution for empowered sovereignty, security, and efficiency.

Cosmian kms allows organizations to centralize and manage encryption/decryption processes, keys, and certificates, incorporating modern and advanced features for unified management.

Cosmian kms is open source.

Protect your data sovereignty

With our independent security solution, eliminating reliance on public cloud providers.

Strengthen your 
security posture

by taking charge of sensitive data encryption, including workspace, R&D data, HR information, and electronic communications.

Streamline your IT system and server management

with automated processes, empowering your system administrators to boost productivity and efficiency in infrastructure management.

What’s in Cosmian kms?

Modern lifecycle management for keys and certificates

Cosmian kms offers cutting-edge features for managing encryption keys and certificates throughout their lifecycle.
  • Key storage
  • Key generation
  • Key rotation
  • Key distribution
  • Key usage policies

What’s in Cosmian kms?

Advanced Public Key Infrastructure integration

Integrating seamlessly with external entities, the Cosmian kms facilitates Public Key Infrastructure management beyond the confines of your organization.

Whether it’s leveraging third-party actors or overseeing key governance, we ensure a streamlined and secure process.

Ready to seize control over security, safeguard your data sovereignty, and enhance your efficiency?

What’s in Cosmian kms?

Embedding standard and modern encryption libraries

Embracing both standard and contemporary cryptographic algorithms, the Cosmian kms boasts an unparalleled breadth of coverage.

  • FIPS 140-3 validated encryption libraries 
  • Covercrypt: Post-quantum resistance & access policy
  • Findex: search encryption

How do you set up and run Cosmian kms?

Up and running in 3 days max

Install the kms

Install Cosmian kms on-premise or in a Cosmian vm in the cloud.

Configure identity and encryption

Set up your Identity Provider and choose the necessary encryption libraries.


Set up and provision

Configure parameters, access policies, and provision encryption keys for secure data handling.

Top use cases using Cosmian kms

Third-party SaaS

Keep your data and applications secure when running in cloud environments. Cloud admins won’t learn anything from your data, nor how you use them.


Workplace applications

Secure your data when used with external, third-party business applications such as Google Workspace, and Microsoft Office.

— There are no limits

Find us on
the Marketplaces

Regain control now on your data and applications in the cloud, subscribe to our cloud marketplaces offering on AWS, Azure and Google Cloud.

Cosmian makes no tracking for advertising and does not collect any personal data. Cookies are used for statistical or operational purposes, as well as for analysis, allowing for continuous improvement of the website. Cosmian uses the Matomo Analytics tool, an audience measurement solution that uses cookies with a configuration that complies with the data protection legislation and the recommendations of the CNIL (Commission Nationale de l'Informatique et des Libertés). This configuration allows to anonymise visitor's data and to limit the storage period of this data to a maximum of 13 months. With this configuration, the prior consent to the deposit of Matomo Analytics cookies is not required. However, you can still choose not to allow these cookies by clicking below or at any time by consulting our Privacy Policy.

You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.