Chapter 7 Encryption Key Management
KMIP-compliant Encryption Key Management
Scalar i500 User’s Guide 171
KMIP-compliant Encryption Key Management
The Key Management Interoperability Protocol (KMIP®) is a
specification developed by OASIS®. Its function is to standardize
communication between enterprise key management systems and
encryption systems. With version i7.2, the Scalar i500 provides a KMIP
version 1.0 compliant encryption solution.
KMIP is currently only supported with SafeNet® KeySecure servers.
Contact your Quantum representative for details.
Details about the Scalar i500 KMIP-compliant implementation include:
• As with other encryption systems supported by the library, in order
to use KMIP-compliant encryption systems with the Scalar i500, you
must have an Encryption Key Management license installed on the
library.
• A minimum of two KMIP-compliant encryption servers are required
for failover purposes. A total of 10 KMIP-compliant encryption
servers are allowed, for increased failover capability.
See Configuring Encryption Key Management on the Library
on page 172
for more information and instructions on how to configure KMIP-
compliant encryption systems on the library.
General Notes About
Encryption on the Library7
Keep the following points in mind when using encryption on the library:
• Data written to encryption-supported and encryption-capable media
in EKM-supported tape drives will be encrypted unless data was
previously written to the media in a non-encrypted format. In order
for data to be encrypted, the media must be blank or have been
written to using library managed encryption at the first write
operation at the beginning of tape (BOT).
• You cannot append encrypted data to a non-encrypted tape.
• You cannot append non-encrypted data to an encrypted tape.
• Only one data encryption key can be used per tape cartridge.
To Next Page
Loading...
Need help?
General