Maintained with ☕️ by
IcePanel logo

Azure Key Vault service enhancements now available

Share

Services

Azure Key Vault is a unified service for secret management, certificate management and encryption key management, backed by FIPS-validated hardware security modules (HSMs). **Recent enhancements include:** * Enhanced security with [Private Link](https://docs.microsoft.com/en-us/azure/key-vault/general/private-link-service) – An optional control that enables you to access your Key Vault over a private endpoint in your virtual network. Traffic between your virtual network and Key Vault flows over the Microsoft backbone network, thus providing additional assurance. * [More choices for BYOK](https://docs.microsoft.com/en-us/azure/key-vault/keys/hsm-protected-keys) – Some of our customers generate encryption keys outside Azure and import them into Key Vault in order to meet their regulatory needs or to centralise where their keys are generated. Now, in addition to nCipher nShield HSMs, you can also use SafeNet Luna HSMs or Fortanix SDKMS to generate your keys. These additions are in preview. * Rotation of secrets made easier – Notifications for keys, secrets and certificates allows you to receive events at each point of the life cycle of these objects and define custom actions. A common action is rotating secrets on a schedule to limit the impact of credential exposure. [Read new tutorial](https://docs.microsoft.com/en-us/azure/key-vault/secrets/tutorial-rotation). [Learn more](https://azure.microsoft.com/en-us/services/key-vault/ "https://azure.microsoft.com/en-us/services/key-vault/") * Key Vault * Services * [ Key Vault](https://azure.microsoft.com/en-gb/products/key-vault/)