Home > FAQ > Bring Your Own Key (BYOK)
Content
What is Bring Your Own Key (BYOK)?

Bring Your Own Key (BYOK)

What is Bring Your Own Key (BYOK)?

Bring Your Own Key (BYOK) allows organizations to encrypt data and have full control of their encryption keys.

Each cloud provider offers to Bring Your Own Key (BYOK), but with varying degrees of support. With client-side encryption, the application is typically responsible for encrypting and decrypting the data before sending and receiving it from the cloud service providers. 

With BYOK, organizations can import their own master key, which the cloud provider stores in the key management system (KMS). If the master keys are stored in an external Key Management System, the cloud provider never gets access to the master key.

The cloud provider protects the data encryption keys (DEKs) by using your master key. The organizations always have a copy of the master key in case it is lost or revoked.

2024-buyers-guide

Platform

Fortanix Armor

Key Insight

Data Security Manager

Confidential Computing Manager

Open Source Platform

Enclave Development Platform®

Solutions

Use Cases

Legacy to Cloud Infrastructure Migration

Regulatory Compliance

Post-Quantum Readiness

Secure, Data-Driven Innovation

Company

About Us

Partners

Careers

Confidential Computing

University

Blog

FAQ

Contact Us

Awards

Events

Press

News

Services

Media Kit

Newsletters

Customers

Resources

Support

Fortanix-logo

4.6

star-ratingsgartner-logo

As of August 2023

SOC-2 Type-2ISO 27001FIPSGartner LogoPCI DSS Compliant

US

Europe

India

Singapore

3910 Freedom Circle, Suite 104,
Santa Clara CA 95054

+1 408-214 - 4760|info@fortanix.com

High Tech Campus 5,
5656 AE Eindhoven, The Netherlands

+31850608282

UrbanVault 460,First Floor,C S TOWERS,17th Cross Rd, 4th Sector,HSR Layout, Bengaluru,Karnataka 560102

+91 080-41749241

T30 Cecil St. #19-08 Prudential Tower,Singapore 049712