GaraSign Provides Secure, Proxied Access To Private Keys Stored In HashiCorp Vault

A banner image for a blog post announcing a partnership between Garantir and HashiCorp
The Garantir team is delighted to announce a new technology partnership with HashiCorp, a market leader in multi-cloud infrastructure automation software. The partnership brings an integration of GaraSign, Garantir’s flagship product, with HashiCorp Vault, a tool to secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data. The integration enables customers to make use of cryptographic keys stored in Vault without ever exporting the keys to end users, thereby keeping the keys secure, while also maintaining the highest level of performance.
 
GaraSign is an enterprise platform for running secure and highly performant cryptographic operations. By restricting end-user clients to proxied access to private key material, GaraSign ensures that the private keys remain secured in HashiCorp Vault or hardware security modules at all times. Additionally, GaraSign provides end-users with faster access to private key material with a client-side hashing architecture.
 
HashiCorp Vault provides a unified interface to secrets stored across multiple clouds and data centers, while restricting access to those secrets and recording a detailed audit log of which users have requested access to them. GaraSign integrates with Vault as one of its cryptographic tokens (or “key containers,” as they’re called within the GaraSign lexicon) via Vault’s Transit Engine.
 
Garantir’s GaraSign and HashiCorp Vault complement each other remarkably well. GaraSign offers a multitude of native client integrations, including Apple, Microsoft, Java, GPG, OpenSSL, and much more, which enables all end-user signing clients throughout an enterprise environment to securely use private key material stored in HashiCorp Vault, without exporting that private key material.
 
At the same time, HashiCorp Vault centralizes and safeguards secrets and private keys from multiple clouds and data centers. This allows customers to manage all secrets and sensitive data in one centralized location, providing an extremely robust level of security and making it easy for end users to gain access to private keys they need (and only the keys they need).
A diagram showing how Garantir GaraSign works with HashiCorp Vault
While GaraSign’s client integrations help to provide seamless access to private key material to all end-users, HashiCorp Vault gives those end users access to private key material stored in various locations, including data centers and cloud storage. The result is unparalleled security for secrets and private key material that end users can easily access through the tools and platforms they’re using today, all with outstanding performance.
 
“Traditionally, customers have struggled to balance the security of their private keys with the performance of cryptographic operations,” says Kieran Miller, Chief Architect of Garantir. “With GaraSign, customers get the best of both worlds. GaraSign’s client-side hashing architecture significantly speeds up performance and its native client integrations allow customers to continue to use the same tools they use today, all while keeping the cryptographic keys securely stored in Vault.”
 
“With widespread usage of multi-cloud, businesses need to store data in multiple locations simultaneously, presenting challenges in centrally managing and controlling access to secrets,” says Asvin Ramesh, Director, Technology Partners at HashiCorp. “With HashiCorp Vault, customers can give team members access to secrets spread across various cloud storage providers and data centers, while also keeping detailed access logs. This extends the capabilities of GaraSign, making it possible for signing clients to access private key material across multiple cloud storage platforms.”
 
For more information on the partnership between Garantir and HashiCorp, visit the Garantir integrations page.
 
Reach out to the Garantir team if you’d like to schedule a demo or try out our free hosted proof of concept so that you can see how GaraSign can improve the security and performance of end-user access to cryptographic material in your environment.

###

About HashiCorp: HashiCorp is the leader in multi-cloud infrastructure automation software. The HashiCorp software suite enables organizations to adopt consistent workflows to provision, secure, connect, and run any infrastructure for any application. HashiCorp’s open source tools Vagrant™, Packer™, Terraform, Vault, Consul, and Nomad are downloaded tens of millions of times each year and are broadly adopted by the Global 2000. For more information, visit https://www.hashicorp.com or follow HashiCorp on Twitter @HashiCorp.
 
About Garantir: Garantir is a leading digital signature platform provider experienced in integrating high-performing security solutions into the enterprise. With a wealth of expertise, the Garantir team has worked on the digital security needs of many of the Fortune 500 companies, enabling customers to maintain maximum security without impacting performance. Garantir’s flagship product, GaraSign, is the fastest and most secure cryptographic digital signature platform product on the market. The Garantir team can be reached at info@garantir.io.

1041 Market Street #302

San Diego, CA 92101

(858) 751-4865

info@garantir.io

Copyright © 2020 Garantir LLC. All Rights Reserved.