|
|
Hierarchal AES Key Management System
Copyright © 2007-2011 GoldKey Security Corporation. All rights reserved.
|
One of the greatest challenges for many companies is making data easy to share,
access and recover, without compromising corporate security. GoldKey uses a
three-tier Hierarchal AES Key Management System to give companies a simple,
yet powerful, way to distribute trust, manage authority and monitor access.
Resources
Next Steps
GoldKey builds an
efficient 3-tier Hierarchal
Key management system
right into the hardware
for powerful security
control with no
backdoors or accidental
lockouts.
The GoldKey Security Hierarchy
Since GoldKey management tools are already integrated within the hardware, administrators can perform all processes efficiently without the need for costly or cumbersome software.
The GoldKey hierarchal security solution is comprised of:
Since GoldKey management tools are already integrated within the hardware, administrators can perform all processes efficiently without the need for costly or cumbersome software.
The GoldKey hierarchal security solution is comprised of:
• GoldKey Tokens - distributed to authorized users
for access to data
GoldKey Master Tokens
Before deployment, GoldKey Tokens are first registered to a GoldKey Master Token using a patent-pending technology that allows the Master Token to manage an unlimited number of GoldKeys, each with their own encryption keys. The Master Token can also distribute group keys to allow shared access to encrypted data between GoldKey Tokens.
Before deployment, GoldKey Tokens are first registered to a GoldKey Master Token using a patent-pending technology that allows the Master Token to manage an unlimited number of GoldKeys, each with their own encryption keys. The Master Token can also distribute group keys to allow shared access to encrypted data between GoldKey Tokens.
• GoldKey GrandMaster Tokens - used to
register and manage GoldKey Master Tokens and
typically kept only for emergencies or expansion
• GoldKey Master Tokens - used to register and manage
GoldKey Tokens
There is no "backdoor" to GoldKey's hardware management system.
1. Decrypt data that has been encrypted by a GoldKey
2. Duplicate a GoldKey Token
3. Reset a user's GoldKey PIN
4. Change group access for a GoldKey Token
5. Clear and reissue a GoldKey Token to a different user
6. Block a lost GoldKey from KryptoVault access
7. Review file access logs in KryptoVault
2. Duplicate a GoldKey Token
3. Reset a user's GoldKey PIN
4. Change group access for a GoldKey Token
5. Clear and reissue a GoldKey Token to a different user
6. Block a lost GoldKey from KryptoVault access
7. Review file access logs in KryptoVault
GoldKey GrandMaster Tokens
At the very top of the GoldKey hierarchy is the GrandMaster Token with full security authorization within the hierarchy. Through a simple registration process, specific data access authority is passed down from the GrandMaster Token to each Master Token depending on organizational needs and requirements.
At the very top of the GoldKey hierarchy is the GrandMaster Token with full security authorization within the hierarchy. Through a simple registration process, specific data access authority is passed down from the GrandMaster Token to each Master Token depending on organizational needs and requirements.
For example, a Master Token might be issued to the head of Human Resources with
access authority to specific areas of that department. Using a similar registration
process, the Master Token can then delegate data access authority to an individual
GoldKey Token issued to an employee in that department who is lower in the
organization hierarchy.
Built-In Management and Monitoring
The Hierarchical Key Management System also provides the ability to monitor and manage the day-to-day usage and activity of every GoldKey Token. If an employee leaves the company and does not return the GoldKey, the Master Token retains access to all data encrypted with that registered GoldKey. GrandMaster and Master Tokens also have the ability to track and block any registered GoldKey's access to Public or Private Cloud Storage.
The Hierarchical Key Management System also provides the ability to monitor and manage the day-to-day usage and activity of every GoldKey Token. If an employee leaves the company and does not return the GoldKey, the Master Token retains access to all data encrypted with that registered GoldKey. GrandMaster and Master Tokens also have the ability to track and block any registered GoldKey's access to Public or Private Cloud Storage.
The Master Token can perform any of the following management
operations for each of the GoldKey Tokens registered to it:
GoldKey Security Strategies