Getting started

The Stormshield Encryption Platform (SEP) solution helps implementing Data Centric Security and Zero Trust (ZT) in your environment at multiple levels:

• Application level: Integrate Zero Trust directly into your existing applications, or those currently under development (e.g., Google Workspace, healthcare applications, IoT, business),

• Development process: Secure your data and access to your data during your development processes. For instance by securing private HTTPS keys or API tokens for CI/CD, GitOps, etc.,

• Infrastructure level: Protect your secrets at the lowest level in your deployments, especially by securing Kubernetes.

   

  

Stormshield KMaaS is the backend component of this ecosystem and acts as a Policy Decision Point as defined in the Zero Trust architecture, securing and authorizing access to confidential data.

It includes the following major features:

• Key Access Control List Service (KACLS), is dedicated to securing Google Workspace and defined in collaboration with Google,

• Key Access Service (KAS) is a suite of REST APIs used by Stormshield Software Development Kit (SDK),

• Crypto API exposes a REST API for general-purpose cryptographic operations, independent of any specific ecosystem,

• Public Key Infrastructure (PKI) is a service that allows certificates to be quickly issued to secure short-duration MTLS communications.

The diagram below shows the overall Stormshield Encryption Platform (SEP) ecosystem: