Entrust nShield HSMs become the first Mirantis-certified HSMs in the market to deliver enhanced security to the Mirantis Kubernetes Engine. The new certified integration provides a root of trust, enabling developers to add the robust cryptographic services offered by nShield HSMs to containerized applications.
The Mirantis Kubernetes Engine is a container platform for accelerating the development and delivery of modern applications. The platform provides developers with greater choice, simple onboarding and automation across DevOps, and a secure pipeline to Kubernetes environments that can run anywhere.
On-premises nShield or nShield as a Service HSMs, running the nShield Container Option Pack, now integrate with Mirantis Kubernetes Engine. Entrust nShield HSMs provide a FIPS 140-2 Level 3 and Common Criteria EAL4+ high assurance environment for generating the cryptographic keys used to sign, verify and encrypt sensitive data for the Mirantis Kubernetes Engine.
Application developers now can access cryptographic functionality – including enhanced key generation, signing, and encryption – within the container-based environment, protecting sensitive application data and transactions.
“Mirantis Kubernetes Engine is the industry-leading container orchestration platform for developing and running modern applications at scale, anywhere.” said John Allwright, Vice President of Marketing at Mirantis.
“As containerized applications become the de facto methodology for modern software development, integrated and trusted access to robust cryptography is imperative. Entrust nShield HSMs provide that additional pillar of security and trust developers need.”
“Rapid application development processes must go hand-in-hand with robust cryptography to maintain security in any development environment,” said Juan Asenjo, Director of Product, Solutions and Partner Marketing at Entrust.
“Integrating nShield HSMs with the Mirantis Kubernetes Engine makes it easier for developers to put security and trust at the foundation of containerized application development.”
Whether deployed physically on-premises or as a service, Entrust nShield HSMs deliver certified cryptographic services that are easily integrated with containerized applications to facilitate auditing and compliance with regulatory requirements. nShield HSMs operationalize trust by separating critical security functions from IT operations.
Using the unique Security World key management architecture, and separation of duties, security administrators can have granular control over the access and usage of key use policies, helping to ensure no single individual or entity can subvert security features.