Oracle Key Vault securely stores encryption keys, Oracle Wallets, Java KeyStores, SSH key pairs, and other secrets in a scalable, fault-tolerant cluster that supports the OASIS KMIP standard and deploys in Oracle Cloud Infrastructure (OCI), Microsoft Azure, Amazon AWS, and Google GCP as well as on-premises on dedicated hardware or virtual machines.
Key Vault 21.10 Oracle Key Vault 21.10 introduces new capabilities and features that improve security, simplify operations, and increase the value you get from your investment in Key Vault:
We engineered Oracle Key Vault to deliver performant, fault-tolerant, and flexible encryption key management for TDE, part of Oracle Advanced Security. Key Vault has been purpose-built to support all database deployment options, including Oracle Real Application Clusters (Oracle RAC); Oracle Data Guard, including Oracle Data Guard per pluggable database; globally distributed (sharded) databases; and Oracle Multitenant pluggable databases.
Key Vault scales to support highly consolidated workloads on engineered systems, such as Oracle Exadata, Oracle Exadata Database Service on Dedicated Infrastructure, Oracle Exadata Database Service in Azure, Oracle Exadata Database Service in AWS, and Oracle Exadata Database Service in Google Cloud Platform.
Key Vault has been fully integrated into the database provisioning workflow of the following:
Embrace a more secure alternative to using local wallets. Remove encryption keys from the database server and reduce the risk of compromise.
Gain control over public key authentication by implementing centralized remote server access control and private key governance.
Leverage Oracle Key Vault to secure long-term retention backups stored in Oracle Cloud using the Zero Data Loss Recovery Appliance archive to cloud solution.
Key Vault supports key storage and distribution for Automatic Storage Management Cluster File System.
Manage keys for Transparent Data Encryption to accelerate compliance with regulations such as GDPR, CCPA, PCI-DSS, HIPAA, and more.
Review the Oracle Key Vault documentation. Topics include installation, upgrading, clustering, integration with HSMs, maintenance and management, and much more.
Peter Wahl, Senior Principal Product Manager, Oracle Key Vault and Oracle Transparent Data Encryption
Oracle Key Vault provides highly available, scalable, centralized key and secrets management for Oracle Database, MySQL, MongoDB, GoldenGate, the Zero Data Loss Recovery Appliance (ZDLRA), ZFS Storage Appliance, and custom applications. Oracle Key Vault can be deployed in Oracle Cloud Infrastructure (OCI), Microsoft Azure, and Amazon AWS, as well as on-premises on dedicated hardware or as virtual machines. This release of Oracle Key Vault 21.8 includes a number of essential security and stability improvements along with several functional improvements.
Read the complete postDownload the Key Vault software appliance from the Oracle Cloud Marketplace to start using the scalable, highly-available key management system.
Learn how to set up the environment and generate SSH keys. Run the workshop on your own tenancy or reserve a time to run the workshop on LiveLabs, free of charge.
Quickly identify your database security posture and get recommendations to mitigate risks.
Talk to a team member about Oracle database security.