KMIP vs PKCS#11 Revisited – A Winning Combination (S30c)
With the lines between enterprise key managers and hardware security modules being continually blurred or at worst, not well understood, it is easy to see two of our leading industry standards (KMIP & PKCS#11) as being competitive. At ICMC 2018 a question raised at the HSM panel asking simply “Which one will win?”. At ICMC 2019 and ICMC 2020 the two standards were compared and contrasted, concluding with “Both! There is no contest!” This year we dive a little deeper into the latest developments across the two standards as they have both made progress in the last 12 months, releasing new versions and bringing greater capability along with it. In more detail, these two OASIS standards are designed to be complimentary. This session will focus on some specific aspects of the latest standards, as well as exploring the way in which implementations supporting each standard are deployed within the enterprise to perform specific and yet complementary roles, citing some specific, recent deployment examples. Delivered by the co-chair of both the OASIS PKCS#11 and Key Management Interoperability Protocol (KMIP) Technical Committees, this discussion will continue on from previous years’ content, providing insights into how complimentary standards can be used to deliver better outcomes in the encryption and cryptography arenas.