KMS Solutions
When selecting a Key Management Server (KMS), you must consider the key management and encryption requirements for your cluster.
The following are the various KMS solutions available, and the criteria often used for selecting each.
Ranger KMS with database
Choose Ranger KMS with database if:
- Enterprise-grade key management is required
- Encryption zone key protection by an HSM is not required
Ranger KMS with Key Trustee Server
Choose KT KMS with Key Trustee Server and Key HSM if:
- Enterprise-grade key management is required
- Encryption zone key protection by an HSM (as root of trust) is required
- Performance for encryption zone key operations is critical
