Kmip-Compliant Encryption Key Management; Fips-Certified Encryption Solution - Quantum Scalar i6000 User Manual

KMIP-compliant Encryption Key Management

FIPS-Certified Encryption Solution

Quantum Scalar i6000 User's Guide
The Key Management Interoperability Protocol (KMIP®) is a
specification developed by OASIS®. Its function is to standardize
communication between enterprise key management systems and
encryption systems. With version i8.2.1, the Scalar i6000 provides a
KMIP version 1.0 compliant encryption solution.
KMIP is only supported in certain environments. Contact your Quantum
representative for details.
Details about the Scalar i6000 KMIP-compliant implementation include:
• As with other encryption systems supported by the library, in order
to use KMIP-compliant encryption systems with the Scalar i6000,
you must have an Encryption Key Management license installed on
the library.
• A minimum of two KMIP-compliant encryption servers are required
for failover purposes. A total of 10 KMIP-compliant encryption
servers are allowed, for increased failover capability.
See Encryption Key Management Systems
on how to configure KMIP-compliant encryption systems on the library.
FIPS (Federal Information Processing Standard) 140-2 is a U.S.
government standard relating to computer security and encryption.
The Quantum Scalar i6000 now offers a FIPS 140-2 Level 1 certified
encryption solution composed of the Scalar Key Manager and HP LTO-5
and LTO-6 Fibre Channel tape drives in a Scalar i6000 library. FIPS mode
can be enabled on the HP LTO-5 and LTO-6 tape drives via the library
user interface. Once in FIPS mode, all encryption key communication
between the tape drive and the library controller is authenticated and
encrypted.
Details about configuring FIPS mode include:
• Library firmware must be at version 630Q or later.
Chapter 8: Encryption Key Management
KMIP-compliant Encryption Key Management
on page 279 for instructions
281