Fortanix-Data-Security-Manager™ (DSM) provides a robust solution for cryptographic key management and data protection by using Intel® Software Guard Extensions (Intel® SGX) to create secure hardware enclaves. However, in many virtual environments where Intel® SGX is unavailable or unsuitable, Fortanix DSM adapts its security framework. In such non-SGX virtual environments, Fortanix DSM employs advanced software-based security techniques to protect cryptographic keys and sensitive data. This includes robust encryption, stringent access controls, and thorough auditing to mitigate the risks associated with virtualized systems.
The security architecture in these settings ensures that cryptographic operations and key management remain secure without hardware enclaves. By utilizing sophisticated software security practices, Fortanix DSM maintains high levels of protection, safeguarding data from unauthorized access and system vulnerabilities while offering the flexibility and scalability needed for modern IT environments.
For more details, refer to the Security Architecture of Running Fortanix DSM in a non-SGX Virtual Environment (On-prem Only).