Hi SangGyu. Yes, and in fact this is exactly what we've done with the KMIP server we use for internal testing. I was too short on time to demonstrate the use of that server during my presentation but the terminal window I was sharing was logged in to a linux machine in New Jersey--this is the machine where my instance was running--and our KMIP server is on a separate linux machine on the HCL network, listening for KMIP messages on a particular port. One piece of the credentials you provide to onkstore when configuring for this setup is the host name where your server is running and port number, as in:
ldev07.hcl.com:2356
As long as we can talk KMIP over that port on that host we're good, whether it's behind your firewall or out on the internet.
Incidentally we tested two KMIP servers and still run them in-house: a python-based server that is meant only for development and not really for production environments, and a product from IBM: Security Key Lifecycle Manager.
Hope that helps.
-jc
------------------------------
John Lengyel
------------------------------
Original Message:
Sent: Tue January 21, 2020 08:53 PM
From: SangGyu Jeong
Subject: WATCH NOW: New Remote Encryption Key Storage in Informix Database Server 14.10.
Hi John, it was nice presentation.
Can I configure a computer in a closed network other than aws or azure as a 'remote key server'?
------------------------------
SangGyu Jeong
Software Engineer
Infrasoft
Seoul Korea, Republic of
Original Message:
Sent: Tue January 21, 2020 03:03 PM
From: John Lengyel
Subject: WATCH NOW: New Remote Encryption Key Storage in Informix Database Server 14.10.
Hey Everybody!
Thank you for attending my webcast New Remote Encryption Key Storage in Informix Database Server 14.10. If you have any additional questions that we did not get to in the Q&A, please leave them below.
For those who were unable to attend, watch the full webcast here and download the slides here.
Thanks,
------------------------------
John Lengyel
------------------------------
#Informix