Académique Documents
Professionnel Documents
Culture Documents
May 2012
General Questions
What is being announced?
RSA is announcing its next-generation Data Protection Manager (DPM) platform that
combines our tokenization technology with our industry-leading application encryption to
give customers a comprehensive data protection suite for applications and the datacenter.
The latest release introduces server-side support for the Key Management Interoperability
Protocol (KMIP) along with a web services API for tokenization. Read below for more
information.
Feature Questions
What are the major features available with this release?
This release introduces server-side KMIP support as well as a web services API for
tokenization.
The web services API for tokenization is something our customers have been asking for,
as this makes tokenization easier to implement. It joins C and Java as tokenization APIs.
What is KMIP?
KMIP stands for Key Management Interoperability Protocol. RSAs Bob Griffin is co-chair
of the OASIS KMIP Technical committee, and has been instrumental in leading the
development of this protocol. RSA is implementing this in our own DPM servers in order
to promote and further the adoption of KMIP in the market. KMIP enables a customer to
take advantage of a single protocol for key management, allowing them to leverage one
key management infrastructure instead of multiple, disparate systems. Imagine a
customer who has one key management system for tape, one for applications, one for
databases; now imaging all of the management and overhead that comes with three
May 2012
separate systems. KMIP enables the customer to centralize and consolidate those,
leveraging one management platform instead of three.
In order for a customer to take advantage of KMIP, the endpoints in their environment
would have to be KMIP-enabled, just as our server now is. The more KMIP-enabled
endpoints, the more systems they will be able to manage from DPM. This protocol is still
in its infancy stage, but we do see it picking up in the market.
Other Questions
How is this different than the old tokenization product that was
available?
May 2012
The tokenization offering that we had on the market throughout 2010 was originally
developed by Professional Services as a standalone token server that leveraged RSA Key
Manager. With DPM 3.0, we merged the capabilities of tokenization, application
encryption, and key management into the same server for our customers. DPM 3.1
furthers the productization of tokenization by adding this feature to both the hardware and
virtual appliance. DPM 3.2 adds an easier-to-deploy API for tokenization (web services).