Java Developer Solutions

Encryption Key Management for Compliance

A variety of compliance regulations now require that Enterprise customers separate encryption keys from the data that they protect. For Java developers this means storing encryption keys on an external appliance designed for this purpose, and securely retrieving encryption keys in Java applications as they are needed for encryption and decryption tasks. Alliance Key Manager is an affordable solution that meets all compliance regulations for the secure creation, management, storage, and distribution of encryption keys. Alliance Key Manager is FIPS-140-2 certified (certificate number 1449) and is perfect for use in Java applications. You can get more information about Alliance Key Manager here.

Java Encryption Key Retrieval

Any application that can create a secure and authenticated TLS connection to the Alliance Key Manager can request and receive encryption keys for use in their applications. Java directly supports TLS communications and can retrieve keys from AKM. You can store the client side certificate and private key files on your local system in a java key store (jks) and reference them in your Java application, make the TLS connection, format the key retrieval request, and retrieve an encryption key for use in your applications. Technical documentation and sample source code is available to use as a starting point in your applications.

Wire Protocol Eliminates Software Libraries

The interface to the Alliance Key Manager is a “wire” protocol. This means that there is no client side software required for key retrieval. You will not need to write wrapper code around shared libraries, or use similar techniques for key retrieval. The Java language has all of the required features needed to retrieve keys. This also means that you will not have complex package update requirements for your Linux or Unix operating environment. To reduce development time, Townsend Security provides sample source code and jar files that you can use to get up and running quickly.

Documentation and Sample Code

The Alliance Key Manager product CD contains documentation on the use of the Alliance Key Manager from Java programs and sample application code that you can use to get started. There is a sample key retrieval application and Eclipse project for the Windows Java developer, and sample source code for the Linux/Unix developer. These sample applications can help you get your programming tasks finished fast.

Encryption Key Management APIs

Most Enterprise customers use the Linux security administrator’s command line application, or the Alliance Windows key management application, to create and manage encryption keys on the Alliance Key Manager appliance. However there are certain applications that need to perform key management functions under program control. Through the Linux command line console application, Alliance Key Manager provides commands to enable all of the normal encryption key management functions including creating encryption keys, rotating keys, revoking keys, and so forth. More than 80 commands are provided for every aspect of key management. You can create your own Java interfaces to the command line application to manage keys.

Tokenization for Java Developers

Tokenization is an alternative data protection method that preserves the format of the original data. The Townsend Alliance Token Manager solution provides tokenization services to Java applications and applications on all over major operating systems. You can get more information about Alliance Token Manager here.