IBM Security Guardium

 View Only

See What’s New in Guardium Key Lifecycle Manager V4.2

By Edith Mendez posted Tue March 07, 2023 08:48 AM


Enterprises have made significant investments in technology and infrastructure needed to grow business. As a result, many face the challenge of keeping a large and diverse network of devices secured and in operation. In the past, we’ve discussed the importance of securing data at rest through encryption and the resulting operational and security challenge of securing, managing, and rotating encryption keys. Now, let’s talk about the device certificates that make secure communication with a key management system possible. To ensure that storage environments can communicate securely and consistently with their key management system, storage admins and security analysts must keep track of which device certificates are valid, which are set to expire, and which have lapsed since a faulty certificate can open the organization up to attack or can lead to costly network downtime. 

To address these concerns, Guardium Key Lifecycle Manager now provides users with a device certificate monitoring dashboard that displays all devices in the network, corresponding certificate, and certificate expiration date. Guardium Key Lifecycle Manager also provides broader interoperability with devices, support for new KMIP endpoints, and more: 

  • NEW: Certificate Vision dashboard: View and investigate certificates from one place

    • A simplified view of expiry and health status for certificates for connected storage endpoints, HSMs, and other devices.

    • Crucial inventory and status information to reduce network vulnerabilities

    • Drill down tables for selected data callouts

    • Improved workflow for communication certificate management

  • NEW: Added support for Transparent Data Encryption (TDE) databases

    • Manage keys used and generated by Oracle TDE Databases via PKCS #11

    • Expands GKLM’s interoperability with device types

  • Support for new KMIP endpoints

    • Added support for FileNet and MongoDB

    • Added support for KMIP 3x

  • Other enhancements:

    • UI security improvements

    • Support for email notifications for security events

    • Other bug fixes

Best of all, we are excited to announce that you can now try Guardium Key Lifecycle Manager free for 90 days. The 90-day countdown starts once GKLM is installed in your test environment. You can purchase a license anytime or after completing the trial to deploy the solution in your production environment.

Register today for our community webinar on Thursday, March 23rd, to hear our Guardium experts discuss the new features and capabilities in Guardium Key Lifecycle Manager v4.2!