Sun establishes first open source standard for storage encryption solutions

Sun Microsystems recently released the generic communication protocol between a Key Manager and an encrypting device, allowing users more value and flexibility through the resources in open source communities like OpenSolaris. The protocol is deployed as a complete toolkit and is readily available without additional licensing from the OpenSolaris website 

Governments, finance, healthcare, retail and other vertical markets need to comply with current regulatory laws that create mandates to protect sensitive stored data. To support these requirements, this protocol is available to customers using the Sun StorageTek KMS 2.0 Key Manager and Sun StorageTek T9840D, T10000A, T10000B Enterprise Drives, as well as Sun StorageTek HP LTO4 drives shipped in Sun libraries.

A number of additional partners are developing products based on this protocol, including EMC, whose RSA security division has talked about releasing it as an option on their RKM Key Manager.

“Open Storage solutions allow customers to break free from the chains of proprietary hardware and software and this new protocol extends this lifeline into the expensive and highly fragmented encryption market,” said Jason Schaffer, senior director, storage product management, Sun Microsystems. “Open source equals customer value for encryption solutions and Sun now offers the only solution on the market that works across multiple vendors and suppliers.” 

By releasing the Sun protocol as Open Source, Sun is taking a major step towards unifying the technology.

Sun continues to work with partners in the industry and with appropriate standards bodies such as IEEE 1619.3 Working Group and OASIS to further develop and formalize the interface as an industry standard. RSA is currently developing a solution using this protocol to work with their RKM key manager. IBM drive division is working on supporting this protocol for their IBM LTO4 drive shipped in Sun Libraries.

Additionally, Sun has shared this protocol with numerous other industry partners including computer OEMs, backup application providers, disk array and switch manufacturers.