Discover Cosmian Covercrypt: The New Encryption Standard for Data Security in the Cloud Age

Learn more

logo-cosmian
logo-cosmian
Book a demo

Discover Cosmian Covercrypt: The New Encryption Standard for Data Security in the Cloud Age Learn more

logo-cosmian
logo-cosmian

Cosmian Key Management Service

High-Performance and customer-managed KMS

Book a demo
Cosmian KMS documentation

The Ultimate Key Management Service Solution for Data Security and Encryption

Cosmian’s Key Management Service (KMS) offers a comprehensive, cloud-based solution for managing cryptographic keys and certificates. Designed for businesses and enterprise organizations, our platform provides a secure, user-friendly system for encryption, access control, and compliance management. Learn how Cosmian KMS can help you protect your data, manage your keys, and maintain a high level of security.

Cosmian End-to-end encryption technology 

Integrated with Cloudproof Libraries for Next-Generation Security

One of Cosmian KMS standout features is its seamless integration with Cloudproof libraries. This integration empowers developers to deliver keys and secrets directly to client-side cryptographic stacks or even perform delegated encryption and decryption. Whether you’re working in Javascript, Java, Dart, or Python, Cloudproof libraries are available in multiple languages to fit your development needs.

Secure and quick Cosmian Adoption

State-of-the-Art Authentication for Seamless Integration and Enhanced Security

Cosmian KMS employs state-of-the-art authentication for easy integration with your IT infrastructure. Our platform supports single sign-on scenarios, streamlining the user experience and enhancing access control. Server access is fortified using native TLS, and we offer Open ID-compliant JWT access tokens or TLS client certificates for added layers of security.

Cosmian unmatched performances

Flexible Deployment Options for High Availability and Scalability

Cosmian KMS offers unparalleled deployment flexibility, allowing you to choose between a single server or a replicated server mode. For businesses that require high availability, our replicated mode provides redundancy and load-balancing features. Since our KMS servers are stateless, scaling horizontally is a breeze.

Cosmian Access Control 

Independence and Enhanced Security with External KMS Deployment

Choosing to deploy your KMS outside of your cloud provider’s perimeter offers enhanced security and control. An external KMS provides an additional layer of protection against vulnerabilities within the provider’s infrastructure. It also allows for greater flexibility and independence, as you’re not tied to the security measures and standards of a single provider.

Key management and control with Cosmian

Cryptographic Agility and Effortless Key Rotation for Future-Proof Security

Cosmian KMS is designed for Cryptographic Agility with easy key rotation and adaptability to new cryptographic algorithms. With just a few clicks, administrators can rotate keys, thereby reducing the risk of key compromise. This feature is particularly beneficial for complying with industry regulations that require periodic key rotation.

Cosmian Code Verifiability

Open-Source for Community-Driven Security and Transparency

Cosmian KMS takes security and transparency to the next level by offering an open-source solution. The server’s code is publicly available on GitHub, allowing it to be audited and improved by the community. This open-source approach not only provides an extra layer of trust but also fosters continuous improvement through community contributions.

The Ultimate Key Management Service Solution for Data Security and Encryption

Cosmian KMS is more than just a key management service; it’s a comprehensive platform designed to meet all your encryption, access control, and compliance needs. With our RESTful APIs, we offer a secure, scalable, and user-friendly solution for businesses and organizations of all sizes. Manage your keys, protect your data, and maintain compliance with Cosmian KMS.

Seamless Integration with Diverse Authentication Methods for Maximum Flexibility

 

Cosmian KMS offers a robust set of features designed for seamless integration into various IT environments. The server can operate in both authenticated and non-authenticated modes, providing flexibility based on your security requirements. In non-authenticated mode, all requests are mapped to a default user, which can be easily configured. For enhanced security, the authenticated mode requires either TLS client certificates or JWT access tokens, making it compatible with Open ID Connect standards.

Replicated Mode for Unmatched Availability and Scalability

Cosmian KMS’s replicated mode is designed to offer high availability through redundancy and load-balancing, ensuring that your key management system is both robust and resilient. The stateless nature of our KMS servers allows for effortless horizontal scaling. Simply connect multiple servers to the same database and front them with a load balancer to manage increased demand or to provide failover capabilities.

Replicated Mode for Unmatched Availability and Scalability

Cosmian KMS’s replicated mode is designed to offer high availability through redundancy and load-balancing, ensuring that your key management system is both robust and resilient. The stateless nature of our KMS servers allows for effortless horizontal scaling. Simply connect multiple servers to the same database and front them with a load balancer to manage increased demand or to provide failover capabilities.

Database Support to Easily Integrate in your IT Architecture.

When it comes to database support, Cosmian KMS offers unparalleled flexibility. Whether you’re using PostgreSQL, MariaDB, or MySQL, our platform can easily integrate with your database of choice. For example, setting up a PostgreSQL database involves straightforward commands to create a dedicated user and database, while MySQL and MariaDB users can opt for certificate-based authentication for added security. This level of customization ensures that Cosmian KMS can adapt to various IT environments, providing a centralized, scalable, and highly available solution for managing your encryption keys.

Book a 30-minute demo with our experts

Our latest news

Browse all articles

Cosmian makes no tracking for advertising and does not collect any personal data. Cookies are used for statistical or operational purposes, as well as for analysis, allowing for continuous improvement of the website. Cosmian uses the Matomo Analytics tool, an audience measurement solution that uses cookies with a configuration that complies with the data protection legislation and the recommendations of the CNIL (Commission Nationale de l'Informatique et des Libertés). This configuration allows to anonymise visitor's data and to limit the storage period of this data to a maximum of 13 months. With this configuration, the prior consent to the deposit of Matomo Analytics cookies is not required. However, you can still choose not to allow these cookies (by clicking here ) or at any time by consulting our Privacy Policy.

For more information please consult our Privacy Policy