Encryption Key Management HSM for SQL Server 2008

By: Patrick Townsend Security Solutions  11-11-2011
Keywords: Data Encryption, Encryption Key Management

Cost Effective

Cost should not be a barrier to compliance. Our HSM cost model is built to scale from a single server to a multi-server environment. Any organization can now deploy a cost-effective, comprehensive and certified solution to meet key management compliance requirements.

Meet Compliance Requirements

Meet encryption key management best practices with separation of duties and dual control.  Store encryption keys separately from the encrypted data on your Microsoft SQL Server with a secure and certified HSM. Enforce separation of duties and prevent administrators from having access to SQL Server data and the encryption keys to meet compliance standards.

Out of the Box Integration with Microsoft SQL Server 2008

Townsend Security’s encryption key management HSM connects effortlessly to the database. It utilizes Microsoft’s (EKM) interface to support both Transparent Data Encryption (TDE) and Cell Level Encryption on Microsoft SQL Server 2008.

Meet Compliance Regulations

Alliance Key Manager for SQL Server 2008 meets FIPS 140-2 Level 1 specifications.

Automate Key Management Processes

Save time while addressing compliance requirements for key management. Automate all of your essential key management tasks including rotation, retrieval, and generation, for one server or many, in a central location.

Features Benefits
Automatic integration with SQL Server 2008 Uses Microsofts Extensible Key Management (EKM) interface to support Transparent Data Encryption (TDE) on SQL Server 2008
A secure and separate appliance houses encryption keys Enforce dual control and separation of duties for compliance by storing encrypted data away from the encryption keys
Simplify key management tasks Automate key rotation, retrieval, and generation in a central location



Key Sizes

128-bit AES symmetric keys

192-bit AES symmetric keys

256-bit AES symmetric keys

1024-bit RSA keys

2048-bit RSA keys


SSL/TLS authenticated secure communications

GUI and Command Line console for key management

Secure web application for server management

Keywords: Data Encryption, Encryption Key Management

Contact Patrick Townsend Security Solutions

Email - none provided

Print this page


Other products and services from Patrick Townsend Security Solutions


AES Encryption | Townsend Security

Extensive document of the encryption APIs and developer guidelines will help shorten the development and deployment time for a project. Advanced Encryption Standard has been adopted as a standard by the US government and many state and local agencies. Alliance AES provides a number of resources to developers to make it easy to deploy data security solutions.


Tokenization for IBM i | Townsend Security

Generate non-recoverable tokens, (when the original data does not need to be recovered) using a separate token server and eliminate the need to store the original data in an encrypted format, usually taking the server out of scope for compliance. Supports the masking of tokens using the following options: Mask using the last 4 digits, the first 5 digits, the first 6 digits or mask using the first 2 and last 4 digits.


PGP File Encryption | Townsend Security

PGP for System i provides a native i5/OS implementation of PGP with sophisticated and easy-to-use automation features, including automation of encryption and decryption through library scan, IFS file system scan, and scheduling. PGP Command Line 9 for System z provides full support for all native functions of PGP including LDAP integration, Additional Decryption Key, PGP Key Server, and XML configuration.


Encryption Key Management | Townsend Security

Alliance Key Manager mirrors keys between multiple key management appliances over a secure and mutually authenticated SSL/TLS connection for hot backup and disaster recovery support. Enterprise-wide groups can be defined and keys can be restricted to Enterprise users, groups, or specific users in groups. All access to security administration is authenticated using SSL/TLS client and server authentication.


Secure Managed File Transfer | Townsend Security

Automatically transfer files using Secure Shell sFTP or secure SSL FTP to banks, insurance companies, benefits providers, payment networks, and any other internal or external server. Alliance Secure Shell SSH sFTP and encrypted SSL FTP meet the data protection requirements of these regulations and use the NIST recommended encryption levels for transferring data.


XML Translation | Townsend Security

Alliance XML/400 automates the inbound and outbound process of XML documents and web services through a combination of HTTP servers, automatic data mapping to IBM I formats, and user application integration. IBM I customers can deploy Alliance XML/400 for business integration with a variety of XML compliant services such as WebMethods, Microsoft .NET, WebSphere, and others.