Embassy Key Management Server (EKMS) is a server software product for secure backup and restoration of protected keys from one TPM-enabled system to another according to security policies defined on the server.
The KTM client software formats TPM-secured keys into individual migration packages and securely transmits them to the server for storage and subsequent recovery. Retrieval of the archived information requires authorized access based upon the enterprise's security policy settings.
Embassy Key Management Server offers advantages beyond currently available solutions by giving the user and IT manager a straightforward way to ensure compliance and protection. By allowing IT administrators to have control over the backup and the security of the data, the business is satisfied that its TPM-secured intellectual property assets are secure and recoverable.
Reduced support costs
Controls potential data loss and results in less employee downtime during platform malfunction or transfer. Easy-to-use and hassle-free solution reduces the need for end-user support.
It features Faster and more complete recovery during times of TPM malfunction, platform replacement and application-based key restoration. It conveys confidence of protection to the end-user.
More efficient processes for IT administration of trusted platforms as they are deployed in the business setting.
Secure remote archival of TPM-secured intellectual property assets with adaptable security policies.
Enterprise control and management of sensitive TPM data, come with authentication of users.
Policy management allows for flexibility in user actions, authentication, restoring to a new user and more.
Key escrow capabilities
Server architecture provides enterprises with key escrow system capabilities.
Actions and underlying functions are familiar for administrators in an Active Directory environment.