RSA 2019 Features Multi-vendor Key Management Interoperability Protocol (KMIP) Demonstrations

Cryptsoft, P6R, QuintessenceLabs, Semper Fortis Solutions, Thales eSecurity, and Utimaco Demo KMIP Support

March 5, 2019--At RSA 2019, members of the OASIS international consortium collaborate to provide live multi-vendor interoperability demonstrations featuring one of the industry’s most widely-adopted security standards, the Key Management Interoperability Protocol (KMIP). The demos are being held from 4-7 March, in Booth 543.

"With the latest revision of the KMIP Specification (v2.0) now complete and fully tested, it is great to have six of the Technical Member organizations providing a live demonstration of encryption key management activities to RSA Conference attendees," said Tony Cox of Cryptsoft, co-chair of the OASIS KMIP Technical Committee and Lead for the KMIP Interop event. "This demonstration is showing the latest features of the KMIP standard including new capabilities, improved performance, scalability, automation and a wide range of security administration capabilities such as Quantum Safe usage and PKCS #11 profiles."

Six companies collaborate to demonstrate the latest KMIP v2.0 capabilities during the RSA show. The demonstration includes interchange of security objects as well as provision of encryption keys and cryptographic services across a common interface. OASIS KMIP Technical Committee members, Cryptsoft, P6R, QuintessenceLabs, Semper Fortis Solutions, Thales eSecurity, and Utimaco are among the participating companies. The live demonstrations show the full key management lifecycle including creating, registering, locating, retrieving, deleting, and transferring symmetric and asymmetric keys and certificates between vendor systems. RSA visitors to the OASIS booth will witness live demonstrations of interoperable encryption keys and security object management interchange between every member.

For the latest in the KMIP development process, see https://www.oasis-open.org/committees/kmip.

Thoughts from the participants

Cryptsoft CTO, Tim Hudson, said, "Interoperability between key management, hardware security, and encryption systems is no longer ‘nice-to-have’ but essential. The latest OASIS KMIP v2.0 standard provides capabilities to address fundamental interoperability requirements, enabling migration from single point ad-hoc products to full enterprise security solutions. As a major OEM technology supplier, supplying standards-based solutions ensures interoperability is a reality for our customers."

P6R CEO, Jim Susoy, said, "P6R is strongly committed to standards-based technologies. Our participation in the OASIS interop underscores that commitment and addresses the fundamental requirement of interoperability. As a technology leader, P6R provides conformant KMIP and PKCS#11 technologies that our customers can count on to be interoperable. P6R is committed to promoting and supporting the OASIS KMIP standard."

QuintessenceLabs CTO, John Leiseboer, said, "QuintessenceLabs has been involved with OASIS and the KMIP Technical Committee since the beginning, enabling our quantum-enhanced technology to be easy to use and integrate. Interoperability benefits customers and empowers them to control their security, which is increasingly important for organizations building quantum resilience."

Thales eSecurity Sr Dir, Product and Solutions Marketing, Charles Goldberg, said, "Thales is an originating author of KMIP and a dedicated supporter. We are pleased to see our customers and partners leveraging KMIP for far more than tape archives; now big data, flash array storage, hyper-converged infrastructure, and cloud use cases are driving deployments. We are proud to be demonstrating our excellent interoperability results for the KMIP v2.0 working draft and the current v1.4 standard."

About OASIS

OASIS is a nonprofit consortium that advances open standards and open source development on a global scale. It offers standards and open source projects a path to recognition in international policy and procurement. Any initiative for developing code, APIs, specifications, or reference implementations can find a home at OASIS. Each project operates independently under industry-approved process and IPR policies. Some of the most widely adopted standards are developed at OASIS including: KMIP, STIX, TAXII, OpenC2, and SAML. Many of these have gone on to be published as ISO, IEC, or ITU standards. New work is encouraged, and all are welcome to participate. OASIS members can be found in 100+ countries on virtually every continent. Major multinational companies, SMEs, government agencies, universities, research institutions, consulting groups, and individuals are represented.

Press contact communications@oasis-open.org