We are curious if there are any shops that do tape encryption using RSA Key Manager/Data Protection Manager for key management.
We run a StorageTek SL8500 tape library, and are upgrading our LTO-4 tape drives to be encryption enabled, so that all our backup tapes will be encrypted.
There is the issue of encryption key mangement for this tape infrastructure. Our first inclination was, being that the tape library and drives are Oracle's, to go with Oracle Key Manager.
However, OKM only supports Oracle tape libraries. It does not extend to support storage, or anything else. Thus, implementing OKM would create a "silo" of encryption key management.
In contrast, we are intrigued with RSA's Key Manager and Data Protection Manager offerings. They are supporting the Key Management Interoperability Protocol (KMIP), a vendor-independent standard for encryption infrastructure. It seems to us that with the RSA key management infrastructure we may have a platform that could support storage, as well as provide API's for applications such as Oracle to do their encryption key management.
So, we would like to know of any environments that do tape encryption using the RSA Key Mgr/Data Protection Mgr infrastructure for key management. If you're one of those, please provide feedback. Thanks.
