Server General KMS for MySQL

The Key Management Service For MySQL TDE Customers


Server General KMS is a key management service for customers who want to use built-in data encryption capability of their MySQL server. The core components of Server General KMS are a data encryption engine, a key management engine, an access control engine, and a reporting engine. Each component performs a critical function in securing the MySQL Master Key(MMK). Here are the main features of Server General KMS for MySQL.
Managed Service

Server General KMS is a managed service that allows you to make use of the inbuilt encryption functionality of your MySQL server while we ensure availability and security of your data encryption keys.

Works With All Cloud Platforms

Server General KMS can help you manage your MySQL data encryption key no matter which cloud platform you are using to host your MySQL server - Amazon, Google, Rackspace or within your own data center.

Store Keys On-Premises or Within Our Cloud Locker

The ultimate control resides with you. You can store your MySQL data encryption keys in a secure key locker appliance deployed on-premises or you can make use of our cloud lockers. We will encrypt your MySQL data encryption key with a master encryption key that is only known to you  before storing your encryption key in a key locker.

24x7 Monitoring & Support

In order to provide security and reliability, our security staff manages our cloud key lockers on a 24x7x365 basis even though we store only the encrypted values of your MySQL data encryption key in our lockers.


Unlike other vendors whose key management solutions can easily cost you thousands of dollars, we see ourselves as a no-frills service provider. You can start with our cloud locker for as little as $199/month.


Server General KMS provides you with a secure location to store your MySQL data encryption keys. You can use a dedicated battle-hardened virtual key locker appliance deployed within your own network to store your keys or you can make use of our fully managed key management infrastructure.

We use role-based access control mechanisms to prevent unauthorized access.

All privileged operations are logged at four different locations in order to provide non-repudiation.

Server General KMS allows you to store your encryption key away from your encrypted data sets. You are also able to limit the scope of compliance by deploying the key locker within your own network. We provide key generation, storage, rotation and revocation capabilities.