I suggest you ...

Create a Windows Key Storage Provider (KSP) that effectively allows usage of Azure Key Vault as a virtual hardware security module (HSM)

If windows could use Azure Key Vault as a KSP, it would better secure the private keys of any certificates in Windows - effectively acting as a virtual hardware security module (HSM). I believe this would enable migration of workloads that require a HSM to Azure, and reduce cost for on-prem workloads that might otherwise require a HSM. It would also make it easier / more secure to setup a public key infrastructure (PKI) / certificate authority (CA) in Azure -- or even on-premises for that matter.

23 votes
Vote
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
You have left! (?) (thinking…)
Frank Lesniak shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...

Feedback and Knowledge Base