---
title: "What key management features are available in Fortanix Data Security Manager?"
slug: "what-key-management-features-are-available-in-fortanix-data-security-manager"
updated: 2026-03-16T17:27:47Z
published: 2026-03-16T17:27:47Z
canonical: "support.fortanix.com/what-key-management-features-are-available-in-fortanix-data-security-manager"
---

> ## Documentation Index
> Fetch the complete documentation index at: https://support.fortanix.com/llms.txt
> Use this file to discover all available pages before exploring further.

# What key management features are available in Fortanix Data Security Manager?

The following key management features are provided by Fortanix-Data-Security-Manager (DSM):

- Create symmetric and asymmetric keys
- Import your own keys
- Derive new keys from existing keys
- Role-based access control to determine which users, groups, or apps have access to which keys, and what operations on those keys
- Temporarily disable keys
- Delete keys which are compromised or no longer in use
- Statistics on the usage of keys
- Complete audit trail for use of keys

Fortanix Data Security Manager (DSM) is the world’s first cloud service secured with Intel® SGX. With Fortanix DSM, you can securely generate, store, and use cryptographic keys and certificates, as well as other secrets such as passwords, API keys, tokens, or any blob of data. Your business-critical applications and containers can integrate with Fortanix DSM using legacy cryptographic interfaces (PKCS#11, CNG, and JCE) or using the native Fortanix DSM RESTful interface.

## Related

- [What algorithms are supported by Fortanix Data Security Manager?](/what-algorithms-are-supported-by-fortanix-data-security-manager.md)
- [AWS Nitro File Persistence](/fortanix-ccm-aws-nitro-file-persistence.md)