VMware's vSAN Encryption and Virtual Machine Encryption solutions give VMWare administrators the ability to natively encrypt data-at-rest at the vSAN storage layer, the VM level, or both without ever introducing software in the guest operating system or using expensive encryption-capable hardware. However, VMware’s solution requires use of a KMIP compliant key management server.
SafeNet AT KeySecure for Government is a KMIP compliant key manager that integrates with VMware encryption to provide customers a robust key lifecycle management solution for managing their VMware encryption keys.
Utilizing KeySecure for Government as an external key manager with VMware encryption helps customers centrally manage all of their cryptographic processing, encryption keys and ultimately owning their data - regardless of where it resides. KeySecure for Government simplifies the management of encryption keys across the entire lifecycle including secure key generation, storage and backup, key distribution, deactivation and deletion.