Forum Discussion

Dean_Gross's avatar
Dean_Gross
Silver Contributor
Jan 15, 2020

Using a HSM or Software Protected Key

When creating an Azure Key Vault for the BYOK scenario, we can choose a software-protected key or an HSM-protected key in the Key Vault service . Can anyone provide me some pros/cons of each option? The official docs are rather vague.

  • Joe Stocker's avatar
    Joe Stocker
    Bronze Contributor

    Dean_Gross I know this is an old thread and you have undoubtedly moved on, but just in case someone finds this thread and is also looking for an answer, here is a document I found that someone else had shared on Yammer that I found helpful (see attached).

    • Dean_Gross's avatar
      Dean_Gross
      Silver Contributor
      Thanks, you are right, that project is finally almost done. Moving from AD RMS to AIP can be much trickier than advertised. Legacy tech is going to continue to haunt lots of organizations for a long time

Resources