Encryption is fundamental to any defense-in-depth strategy whether the goal is compliance or securing sensitive data. Self-encrypting drives are an effective way to deploy encryption in large-scale storage environments. However, as the number of drives increases, so does the number of encryption keys, key stores, and access policies needing management.
The administrative effort involved in managing these deployments and the associated key lifecycle is significant, and can become unwieldy as encryption use increases. To cost-effectively support such an environment and bring it into regulatory compliance, enterprise key management must be part of the solution.
Centralizing the storage of access keys to the self-encrypting drives (SEDs) not only simplifies key management, but also ensures that encrypted data is protected from unauthorized access—even as the size of the encryption deployment grows.