HP Enterprise Secure Key Manager



Similar documents
HP V1410 Switch Series. Product overview. Key features. Data sheet

Models HP 1405C-5 Switch* IEEE 802.1p prioritization: delivers data to devices based on the priority and type of traffic

HP ProCurve Wireless Access Point 10ag Overview

HP V1405 Switch Series. Product overview. Key features. Data sheet

How To Power A Power Supply Shelf With A Power Unit (Hp 2920)

HP Network Security Processors

HP V1905 Switch Series. Product overview. Key features. Data sheet

HP ProCurve Switch 2500 Series

HP ProCurve Switch 1400 Series

QuickSpecs. Models. Features and benefits Configuration. HP VCX x3250m2 IP Telecommuting Module. HP VCX x3250m2 IP Telecommuting Module Overview

HP ProCurve Switch 1800 Series Overview. HP ProCurve Switch G. HP ProCurve Switch G. HP ProCurve Switch G

HP 1405 Small Office Switch Series

HP ProCurve 1410 Switch Series Overview. Models HP ProCurve G Switch

Models HP NJ2000G IntelliJack

HP Networking Mobility Security IDS/IPS Series

QuickSpecs. HP M n Access Point Series. Models HP M n WW Access Point. Key features

HP 1405 Small Office Switch Series

HP E2510 Switch Series

QuickSpecs. Models HP WA2110 Single Radio a/b/g Access Point HP WA2220 Dual Radio a/b/g Access Point

HP ProCurve 1810G Switch Series

HP ProCurve Mobility Security IDS/IPS Series

QuickSpecs. Models HP S Mbps IPS

HP V1810 Switch Series

HP M n Access Point Series

HP E-series MultiService Controller (MSM) Overview. Models HP E-MSM765zl Mobility Controller. HP E-MSM760 Access Controller

HP E4210 Switch Series

QuickSpecs. Models HP 9160v Network Security Processor

ProCurve Switch 1400 Series

QuickSpecs. Models. Features and benefits Application highlights. HP 7500 SSL VPN Module with 500-user License

QuickSpecs. Models HP MSR Open Application Platform (OAP) with VMware vsphere MIM Module

Cisco MCS 7825-H3 Unified Communications Manager Appliance

Models HP V2 Switch. HP Desktop Switch

HP E-M110 Access Point Series. Product overview. Key features. Data sheet

QuickSpecs. Models HP TippingPoint S8010F Next Generation Firewall Appliance

HP V1810 Switch Series

QuickSpecs. Models. HP G Switch. Overview. DA Worldwide Version 10 September 25, 2012 Page 1

Application Server V240 Platform

How To Manage A Network With An Ipc (Ipc) And Ipc V2 (Ipv) On An Ipa (Ipa) On A Network On An Hp Zl (Ips) And V2 On A Pc (

Cisco Redundant Power System 2300

Cisco Nexus 7000 Series Power Supply Modules

ProCurve Switch 1700 Series

Cisco MCS 7816-I3 Unified Communications Manager Appliance

Cisco 7816-I5 Media Convergence Server

HP AP8760 Dual Radio a/b/g Access Point Overview

Data Sheet FUJITSU Server PRIMERGY CX420 S1 Out-of-the-box Dual Node Cluster Server

HP Outdoor Bridge and Access Point Overview. Auto-MDIX: automatically adjusts for straight-through or crossover cables on all 10/100 ports

EMC DATA DOMAIN DEDUPLICATION STORAGE SYSTEMS

ProCurve Switch 8000m (J4110A) and Switch 8000m

HP 3100 SI Switch Series

QuickSpecs. Models HP 110 ADSL-B Wireless-N Router

HP Mobility Security IDS/IPS System Series

Cisco Unified IP Phone Power Injector

HP recommended configuration for Microsoft Exchange Server 2010: HP LeftHand P4000 SAN

HP Port Switches Quick Setup Guide

HP 1810 Switch Series

Cisco Nexus 7000 Series Supervisor Module

NOTE: The Support Life available for HP ConvergedSystem 200-HC EVO:RAIL will be a maximum of 5 years after the purchase date of the solution.

QuickSpecs. HP IP Console Switch with Virtual Media Overview

Models HPE OfficeConnect M n (WW) Access Point

QuickSpecs. Models HP T1500 UPS JPN/TWN. HP UPS T1000 G2, T1500 G2 Models Overview

HP S Intrusion Prevention System (IPS) Series

QuickSpecs. HP Fixed Cord PDUs & Extension Bars (Zero-U/1U Modular PDUs) Overview

QuickSpecs. Models. HP StorageWorks X510 3TB Data Vault. HP StorageWorks X500 Data Vault. HP StorageWorks X500 Data Vault.

Cisco MCS 7825-H2 Unified CallManager Appliance

EMC DATA DOMAIN DEDUPLICATION STORAGE SYSTEMS

QuickSpecs. Models HP 4110 IP Phone

QuickSpecs. HP Managed Power Distribution Units (mapdu) Overview

HP ProCurve Switch 6108

HP ProCurve MultiService Access Point Series

Storage System. Planning Checklist. EC E1, First Edition

QuickSpecs. HP IP Console Switches. Overview

Cisco WAE Deployed with Cisco ACNS: Product Function Matrix. Two 10/100/1000BASE-T. Two 10/100/1000BASE- T

Data Sheet FUJITSU Server PRIMERGY CX400 M1 Multi-Node Server Enclosure

QuickSpecs. Model. Key features Can connect wired device to a wireless network Single radio IEEE a/b/g Two external antennas Indoor enclosure

HP ProCurve Wireless Access Point 420

HP ProCurve MultiService Controller Series

QuickSpecs. Models. HP 41x0 IP Phone Series Overview. HP 4110 IP Phone

HP Server Console Switch with Virtual Media Overview

HP PDU Management Module Overview

EMC VNXe3150, VNXe3300 UNIFIED STORAGE SYSTEMS

HP PS1810 Switch Series

HP 310x IP Phone Series Overview. Models HP 3101SP Basic Speaker Phone HP 3102 Business Phone HP 3105 Attendant Console

LaCie 12big Rack Network

Cisco Secure Network Server

R5000 Uninterruptible Power System (UPS) Overview

You have more pressing concerns than how to backup and share your data but you know it needs to be done and you know it would benefit your business.

SUN FIRE X4170 SERVER

QuickSpecs. Models HP Server Console Switches

HP A5120G SI Switch Series

R5000 Uninterruptible Power System (UPS) Overview

EMC DATA DOMAIN DEDUPLICATION STORAGE SYSTEMS

Cisco MCS 7845-I2 Unified Communications Manager Appliance

WAVE-574 Hardware Specifications

HP Port and 48-Port Switches Quick Setup Guide

Data Sheet FUJITSU Server PRIMERGY CX400 S2 Multi-Node Server Enclosure

HUS-IPS-5100S(D)-E (v.4.2)

QuickSpecs. HP 480/277 Volt Solutions. Overview

Transcription:

HP Enterprise Secure Key Manager Data sheet Product overview When sensitive data at rest is encrypted, the threats of audit failures, financial losses, and damage to your organization's reputation are significantly reduced. However, whenever encryption is used to protect data at rest, a strong key management system is essential to control and preserve the underlying cryptographic keys over the life of the data. If keys are compromised, data is compromised. If keys are lost, data is lost, and business operations are impacted. Additionally, if you can't prove that your data and keys are protected, you'll fail an audit. Reduce the cost and complexity of managing encryption keys across a distributed infrastructure with consistent security controls, automated key services, and a single point of management. The HP Enterprise Secure Key Manager (HP ESKM) reduces your risk of costly data breaches and reputation damage, and eases compliance with industry regulations by requiring authorized access to your business-critical cryptographic keys. Key features Supports a broad range of HP encryption solutions Supports hundreds of clients, millions of keys Automatic clustering, key replication and failover Strategic platform for industry-standard support FIPS 140-2 Level 2 independent security validation

Features and benefits Management Management: Remote configuration and management: is available through a secure Web-based graphical user interface (GUI) and a command-line interface (CLI) Management security: is provided with SSL communications, password-based authentication, fine-grained identity-based administrator privileges, audit logging, and multiple credentials for critical actions Logging and monitoring: supports logging of all events, external Syslog/SIEM servers, SNMP v1/2/3 traps, and FIPS/Healthcheck status servers Resiliency and high availability Multiple recovery layers deliver near continuous access to encryption keys: Reliable hardware and software: >1 million unit-hours of operation with no failures or loss of access to customer data Internal redundant components: mirrored disks, redundant fans, dual power supplies, dual AC power, and dual networks provide uptime Clustering: distributed high-availability ESKM clusters and automatic replication of all keys and configurations support client access and failover to any node Comprehensive backup and restore capabilities: Backup to internal disk, external storage, or removable media for offsite storage: Keys, users, and configurations can be safely and securely backed up as needed or on a regular schedule. ESKM backups are encrypted files and may not be read or restored outside the ESKM. Restore supports selected or full ESKM recovery from previous backups: Keys, users, and configuration may be recovered to existing or new ESKM hardware for full disaster recovery. Security HTTPS management: provides secure Web management Secure Shell (SSHv2): encrypts all transmitted data for secure, remote command-line interface (CLI) access over IP networks Complete security solution: Preconfigured secure server: All ESKM software is preinstalled in a secure facility, and signed and verified at boot time, with no root access; unused ports/services are disabled. High security settings: ESKM can be operated in FIPS mode using SSL and strong mutual client/server authentication. Keys always protected: Keys are encrypted in transit to clients, at rest on disk, and in ESKM backup files. Local certificate authority: Sign client certs; no external CAs needed. Integration ESKM supports a full range of HP/partner encryption solutions: StorageWorks ESL and EML LTO-4/5 tape libraries: protect sensitive data on tape media and deliver long-term access StorageWorks B-Series Encryption Switch and Blades: SAN encryption for large storage networks NonStop Volume Level Encryption (VLE) for disk and LTO-4/5 tape: data-at-rest encryption for mission-critical NonStop customer environments HP partner encryption solutions: integrated via the ESKM Client Software Developer Kit (SDK) Policy management Automate security controls for sensitive data: Unified key management: Converged administration for encryption policy and key controls, spanning multiple encryption solutions. Automate and enforce controls: Strong authentication and access controls to encryption keys; keys are available only to authorized clients or key-sharing groups. Strong logging and auditability: Digitally signed logs record all administrator actions, system events, and client access. Ease of use Easy to use: GUI-driven central management and configuration 2

Scalability Enterprise scalability: Distributed clustering: ESKM clusters scale from 2 to 8 nodes for shared services in large enterprises spanning multiple data centers and geographies. Hundreds of clients: Flexible client licensing; no fixed limit on the number, type, or location of clients enrolled with an ESKM cluster. Millions of keys: Support for key rotation and fine-grained data protection policies using key-per-tape and key-per-disk models. Up to 4 KB in client-defined metadata may be included per key. Warranty and support 1-year warranty: with advance replacement and next-business-day delivery (available in most countries) 3

HP Enterprise Secure Key Manager Specifications HP Enterprise Secure Key Manager (AJ575A) Included accessories Ports Physical characteristics Dimensions Full configuration weight Memory and processor Processor Mounting Environment Operating temperature Operating relative humidity Nonoperating/Storage temperature Nonoperating/Storage relative humidity Altitude Electrical characteristics Maximum heat dissipation Voltage Idle power Maximum power rating Frequency Notes 1 HP ESKM Additional Client License (BB741AA) 2 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T); Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only 1 RS-232C serial console port 29.4(d) x 19.2(w) x 1.7(h) in. (74.68 x 48.77 x 4.32 cm) (1U height) 36 lb. (16.33 kg) 4-core Intel Xeon Processor E5640 @ 2660 MHz, 4 GB DDR3 DIMM; storage: 12 MB L3 cache included 1U rack mount, dual locking front bezel, and rack-mounting rails included. 50 F to 95 F (10 C to 35 C); at sea level; an altitude derating of 1.0 C per every 305 m (1.8 F per every 1000 ft) above sea level 10% to 90% @ 82.4 F (28 C), noncondensing -40 F to 150.1 F (-40 C to 65.6 C); maximum rate of change is 20 C/hr (36 F/hr). 5% to 95% @ 101.7 F (38.7 C), noncondensing up to 10,000 ft. (3 km) 290 BTU/hr (305.95 kj/hr) 100-240 VAC 85 W 135 W 50/60 Hz Idle power is the actual power consumption of the device with no ports connected. Maximum power rating and maximum heat dissipation are the worst-case theoretical maximum numbers provided for planning the infrastructure with fully loaded PoE (if equipped), 100% traffic, all ports plugged in, and all modules populated. Each HP ESKM node ships with dual redundant power supplies and two IEC-IEC power cords intended for rack mounting with dual power distribution units (PDUs) and/or uninterruptible power supplies (UPS) for highest availability. HP ESKM nodes may also be powered using two optional regional power cords connecting to receptacles on separate branch circuits for highest availability. Select from list below. Emissions FCC Class A; CISPR 22; EN 55022; EN 55024; CNS 13438; FCC CFR 47 Part 15; ICES-003; EN 61000-3-2; EN 61000-3-3; EN 60950-1; IEC 60950-1 Management Features Notes Web-based management interface (GUI), command-line interface (CLI), SNMP v1/2/3 (traps only) Centralized, secure, scalable encryption key management services - Establish, automate, and enforce data protection and compliance policies - Secure key generation, retrieval, and access auditing for enrolled clients - Keys are encrypted at all times: in the database, in transit to clients, and in backup files - No fixed limit (100s) on enrolling key-using client devices or applications - Capacity of 2 million keys, with 8 HP ESKM nodes per distributed cluster Strong auditable security for data-at-rest encryption keys - Security hardened Linux-based server appliance; all keys and backups are encrypted at rest and in motion - Granular control of key access to key owners or defined key-sharing groups - Certificate-based authentication, secure administration and audit logging - ESKM is fully validated to FIPS 140-2 Level 2, NIST CMVP Certificate #1516 - Locking front bezel, pick-resistant locks for security officer dual control Reliable near continuous access to business-critical keys for their lifetime - Mirrored internal storage, redundant networks, and power and cooling - Multisite high-availability clustering and secure transparent key replication - Comprehensive monitoring, recovery, backup, and restore functionality All software and hardware is included and preinstalled in a secure facility - Operating system, database, Web administration, clustering, key services, logging/auditing, online help, and local certificate authority - One client license is included per ESKM node; additional licenses are optional and easy to install - Compact 1U server appliance, dual locking front security bezel, processor, memory, RAID 1 storage controller, mirrored disks, dual networks, redundant power supplies and cooling - Accessories included: 2 sets of keys, power cords, null modem serial cable, rack-mounting hardware, and documentation CD Each HP Enterprise Secure Key Manager node ships with redundant power supplies and IEC-IEC power cords suited for rack mounting with dual power distribution units (PDUs) or uninterruptible power supplies (UPS) for highest availability. An ESKM node may also be powered using two optional power cords connected to receptacles on separate branch circuits. HP recommends two such regional power cords be ordered for each ESKM node. Optional power cords (for connection to standard wall outlets) AF556A (1.83 m), 10 A, 110 V, C13 to NEMA 5-15; N. America AF568A (1.83 m), 10 A, 250 V, C13 to CEE7-VII; Europe 4

HP Enterprise Secure Key Manager Specifications (continued) HP Enterprise Secure Key Manager (AJ575A) Services AF570 (1.83 m), 10 A, 250 V, C13 to BS-1363-A; UK/Hong Kong/Singapore AF566A (1.83 m), 10 A, 250 V, C13 to DK 2.5A; Danish AF565A (1.83 m), 10 A, 250 V, C13 to SEV 1011; Swiss AF571A (1.83 m), 10 A, 250 V, C13 to CE123-50; Italy/Chile AF557A (1.83 m), 10 A, 250 V, C13 to GB1002; China AF591A (1.83 m), 10 A, 250 V, C13 to NRB 14136; Brazil AF560A (1.83 m), 10 A, 250 V, C13 to KSC 8305; Korea AF564A (1.83 m), 10 A, 250 V, C13 to SI-32; Israel AF561A (1.83 m), 13 A, 110 V, C13 to CNS 690; Taiwan AF562A (2.0 m), 6 A, 250 V, C13 to IS 1293; India AF572A (2.0 m), 12 A, 110 V, C13 to JIS C8303; Japan AF558A (2.5 m), 10 A, 250 V, C13 to IRAM 2073; Argentina AF569A (2.5 m), 10 A, 250 V, C13 to AS3112-3; Australia, New Zealand AF567A (2.5 m ), 10 A, 250 V, C13 to SABS 164; South Africa 3-year, 4-hour onsite, 13x5 coverage for hardware (HA103A3#Q0P) 3-year, 4-hour onsite, 24x7 coverage for hardware (HA104A3#Q0P) 3-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support and SW updates (HA110A3#Q0P) 3-year, 24x7 SW phone support, software updates (HA107A3#Q0P) 3 Yr 6 hr Call-to-Repair Onsite (HA105A3#Q0P) 1 year Next Business Day Onsite Hardware Support (HA101A1#Q0P) 3-year, 4-hour onsite, 13x5 coverage for HW, 13x5 SW phone support and SW updates (HA109A3#Q0P) 3-year Next Business Day Onsite Hardware Support (HA101A3#Q0P) 1-year, 4-hour onsite, 13x5 coverage for hardware (HA103A1#Q0P) 1-year, 4-hour onsite, 24x7 coverage for hardware (HA104A1#Q0P) 1-year, 6 hour Call-To-Repair Onsite for hardware (HA105A1#Q0P) 1-year, 24x7 software phone support, software updates (HA107A1#Q0P) 1-year, 4-hour onsite, 13x5 coverage for HW, 13x5 SW phone support and SW updates (HA109A1#Q0P) 1-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone support and software updates (HA110A1#Q0P) Refer to the HP website at www.hp.com/networking/services for details on the service-level descriptions and product numbers. For details about services and response times in your area, please contact your local HP sales office. 5

HP Enterprise Secure Key Manager accessories License HP ESKM Additional Client License (BB741AA) To learn more, visit www.hp.com/networking Copyright 2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Intel and Xeon are trademarks of Intel Corporation in the U.S. and other countries. 4AA3-3885ENW, Created March 2011

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information