Share via

Can we generate BYOK file using AWS Cloud HSM?

Roopan P M 110 Reputation points
2023-12-21T13:28:51.3633333+00:00

Hi Team,

We are trying to implement the BYOK in azure. We use GO lang and azure sdk for the operations for keys and secrets.

When we went through the BYOK documentation, we found few HSM vendors to generate the BYOK. But can we use AWS Cloud HSM to generate the same?

https://learn.microsoft.com/en-us/azure/key-vault/keys/hsm-protected-keys-byok?tabs=azure-cli

User's image

Please help here.

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,448 questions
0 comments
Accepted answer
  1. Akshay-MSFT 17,951 Reputation points Microsoft Employee Moderator
    2023-12-26T06:21:37.54+00:00

    @Roopan M

    Thank you for posting your query on Microsoft Q&A, from above description I could understand that you are looking for confirmation on supportability of AWS generated HSM keys on Azure Key Vault.

    Please do correct me for any discrepancies by responding in the comments.

    Currently Importing HSM-protected keys to Key Vault (BYOK) in limited to supported HSMs and AWS generated HSM is not part of it as of now. However, if you feel there is a business need for AWS generated HSM to be added then I would recommend sharing this idea on our feedback portal for visibility of engineering team.

    Also for upcoming and new released features in Key Vault kindly keep yourself posted on:

    Azure Updates and What's new for Azure Key Vault

    Thanks,

    Akshay Kaushik

    Please "Accept the answer (Yes)" and "share your feedback ". This will help us and others in the community as well.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.