Bring your own key (BYOK) to Microsoft Azure

Maintain full control of your sensitive cloud data and applications with nCipher BYOK for Azure. Watch our quick overview video to learn how it works.

Microsoft Azure Key Vault safeguards the critical cryptographic keys used in the cloud to keep your data secured. A growing number of Microsoft services and vendor applications now consume Azure Key Vault and can benefit from BYOK.

Deployed around the world in Azure data centers, nCipher nShield hardware security modules (HSMs) safeguard and manage your keys in the cloud. To give you greater control, nCipher enables you to create, hold, and transfer your own keys for use with Azure Key Vault in the cloud or on your own premises.

Cloud Based: Microsoft Azure Key Vault with Bring Your Own Key (BYOK)

When using Azure Key Vault, you don’t have to give up control of the key securing your data in the cloud. Azure Key Vault uses nCipher HSMs so you can ensure that your keys are always under your control and never visible to Microsoft.

Learn More
Home Image 1

On Premises: Microsoft Azure Information Protection (AIP) with Hold Your Own Key (HYOK)

While most content can be served by securely stored keys in Azure, some sensitive content can never be shared or transmitted outside your security perimeter. The security for this sensitive content needs to be physically on-premises only, with very limited access and sharing.

To manage your most sensitive data within your security perimeter, AIP offers the HYOK option that is enabled by an on-premises physical component, with key management provided through an nCipher nShield hardware security module (HSM).

Learn More