Externally Manage and Store Oracle Cloud Infrastructure Keys

Control your data and encryption keys for digital sovereignty and meet compliance requirements

  1. Meet compliance mandates such as PCI DSS, GDPR, and CCPA
  2. Streamline encryption management with seamless key rotation
  3. Reduce administration costs with centralized key and policy management
  4. Optionally store encryption keys in FIPS 140-2 Level 3 hardware security module

OCI EKMS with Thales CipherTrust

Oracle Cloud Infrastructure (OCI) External Key Management Service (EKMS) is a new capability that allows customers to protect their data in OCI using encryption keys held inside CipherTrust Manager external to OCI.
CipherTrust Cloud Key Management (CCKM), which is a licensed component of the CipherTrust Manager, delivers external key storage, key generation, separation of duties, reporting, and key life cycle management to help fulfill internal and industry data security mandates. FIPS140-2 Level 3 certification available.


  1. Move critical workloads with sensitive data to Oracle Cloud Infrastructure
  2. Maintain sovereign control of sensitive data
  3. Gain strong key control and security

Enabling Organizations To

  1. Maximize choice from a single console, manage Native, BYOK, HYOK keys across clouds
  2. Demonstrate compliance with privacy regulations such as GDPR, Shrems II, PCI-DSS, CCPA
  3. Improve operational sovereignty to protect against internal and external bad actors
  4. Reduce threat surface by centralizing control of keys outside of cloud providers
  5. Increase efficiency and reduce costs by simplifying and automating key management
  6. Increase efficiency and reduce costs by simplifying and automating key management

Related products

CipherTrust Data Security Platform

Addressing the security and performance demands of the largest, most performance-intensive environments, including those of enterprises, government agencies, and cloud service providers, the CN6000 Series encryptors offer variable-speed licenses up to 10 Gbps.

/ Try It now

Wherever your data resides we can help you own your data

Get a Demo