Skip to content

Commit eb56581

Browse files
PRMerger6PRMerger6
authored
Merge pull request #100726 from Galey801/patch-1
Update azure-key-vault.md
2 parents 40f2f5f + 5b8a70b commit eb56581

File tree

1 file changed

+9
-2
lines changed

1 file changed

+9
-2
lines changed

articles/azure-australia/azure-key-vault.md

Lines changed: 9 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ This article will focus on management of keys using Key Vault.
2828

2929
### Deployment options
3030

31-
There are two options for creating Azure Key Vaults. Both options use the Thales nShield family of Hardware Security Modules (HSM), are Federal Information Processing Standards (FIPS) validated, and are approved to store keys in PROTECTED environments. The options are:
31+
There are two options for creating Azure Key Vaults. Both options use the nCipher nShield family of Hardware Security Modules (HSM), are Federal Information Processing Standards (FIPS) validated, and are approved to store keys in PROTECTED environments. The options are:
3232

3333
- **Software-protected vaults:** FIPS 140-2 level 1 validated. Keys stored on an HSM. Encryption and decryption operations are performed in compute resources on Azure.
3434
- **HSM-protected vaults:** FIPS 140-2 level 2 validated. Keys stored on an HSM. Encryption and decryption operations are performed on the HSM.
@@ -65,7 +65,14 @@ Access to Key Vaults should be explicitly restricted to the minimum set of netwo
6565

6666
### Bring Your Own Key (BYOK)
6767

68-
Key Vault supports BYOK. BYOK enables users to import keys from their existing key infrastructures. Thales provides an [Australian toolset](https://www.microsoft.com/download/details.aspx?id=45345) to support the secure transfer and import of keys from an external HSM (for example, keys generated with an offline workstation) into Key Vault.
68+
Key Vault supports BYOK. BYOK enables users to import keys from their existing key infrastructures. The BYOK toolset supports the secure transfer and import of keys from an external HSM (for example, keys generated with an offline workstation) into Key Vault.
69+
70+
Go to the Microsoft Download Center and [download the Azure Key Vault BYOK toolset](https://www.microsoft.com/download/details.aspx?id=45345) for Australia. The package name to download and its corresponding SHA-256 package hash are:
71+
72+
|---|---|
73+
|Package Name|SHA-256 Hash|
74+
|KeyVault-BYOK-Tools-Australia.zip|CD0FB7365053DEF8C35116D7C92D203C64A3D3EE2452A025223EEB166901C40A|
75+
|
6976

7077
### Key Vault auditing and logging
7178

0 commit comments

Comments
 (0)