CipherTrust Manager

CipherTrust Manager is an advanced key and security policy management solution developed by Thales. As the central component of the CipherTrust Data Security Platform, it provides organizations with a centralized platform to manage the full lifecycle of encryption keys—generation, rotation, import/export, backup, recovery, and deletion—across diverse environments including on-premises, cloud, and hybrid infrastructures.

Available in both virtual (k170v, k470v) and hardware (k160, k470, k570) appliance formats, CipherTrust Manager offers flexible deployment and scalability for enterprises of all sizes. It integrates with FIPS 140‑2/3-certified Hardware Security Modules (HSMs), such as Luna HSMs, to establish a strong root of trust. With robust support for RESTful APIs, KMIP, NAE-XML, and PKCS#11, the solution seamlessly fits into DevSecOps pipelines and IT ecosystems.

It supports advanced access control through role-based and attribute-based mechanisms (RBAC/ABAC), directory integration (LDAP/AD), and logs all activity in audit-ready formats for regulatory compliance. The manager also acts as a policy hub for data protection services like tokenization, transparent encryption, and ransomware defense. With support for high availability, clustering, and real-time replication, CipherTrust Manager enables consistent, scalable, and secure key and policy management across the entire data lifecycle.