Cloud file syncing and sharing company Box today announced the launch of KeySafe, a service that gives companies a reliable way to store the encryption keys for their data.
Box is offering two flavors of KeySafe. The first one draws on the CloudHSM service from public cloud market leader Amazon Web Services (AWS), which uses dedicated hardware security modules from vendor Gemalto in Amazon data centers. Box announced this product a year ago under the name Enterprise Key Management (EKM), and now it’s being rebranded to Box KeySafe with AWS CloudHSM.
The second flavor of KeySafe is new — it runs on top of an AWS service called the Key Management Service, which is newer than CloudHSM and costs less money. Plus, it’s simpler to use.
“Box KeySafe with AWS Key Management Service can be configured in under 30 minutes and requires very little on-going maintenance,” Box director of product management Jon Fan wrote in a blog post.
The availability of KeySafe could assuage security-sensitive companies that want to be in control of their own destiny if they adopt cloud services such as Box and allow data to be stored on other companies’ data center infrastructure. That could help Box further distinguish itself from Dropbox, Google Drive, and Microsoft’s OneDrive (although Microsoft does have its own Key Vault cloud service, and besides that, Box has increasingly partnered with Microsoft to integrate with Office tools).
Both flavors of Box’s KeySafe service follow four distinct steps:
- Upload file to Box
- Encrypt file using Box Key
- Encrypt the Box Key using the customer’s key
- Update the audit log, which the customer controls
Box says it can never touch customers’ encryption keys when they’re stored with KeySafe.
Box KeySafe with AWS CloudHSM is available now, while Box KeySafe with AWS Key Management Service will become available next month, according to a statement. For both products, pricing is based on the size of each customer’s deployment.
Box now has more than 54,000 paying customers, according to its most recent earnings statement.
VentureBeat's mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Discover our Briefings.