Home > Storage > PowerMax and VMAX > Data Protection > Dell EMC PowerMax: End-to-End Efficient Encryption > Terminology
The following table provides definitions for some of the terms that are used in this document.
Term |
Definition |
PowerMaxOS |
The PowerMax operating environment that runs on PowerMax and VMAX All Flash arrays. |
Management module control station (MMCS) |
Monitors the array environment, provides remote notification and remote support capabilities, and allows authorized Dell Technologies personnel to access the array locally or remotely. |
Key Management Interoperability Protocol (KMIP) |
OASIS protocol used between encryption-capable applications (for example, PowerMax and VMAX D@RE) and key-manager servers to obtain and manage the keys that the encryption processes use. |
Public Key Infrastructure (PKI) |
A set of roles, policies, and procedures to manage digital certificates and public key encryption. |
Certificate Authority (CA) |
Entity that issues digital certificates. |
AES Algorithm |
Advanced Encryption Standard (AES) algorithm. |
Hash-based Message Authentication Code (HMAC) |
Used to sign I/O module firmware to check integrity of cryptographic operations. |
Key Trust Platform (KTP) |
This component resides on the MMCS and communicates using the OASIS KMIP with the key manager to manage encryption keys. The component is also called the KMIP client. |
Vormetric Data Security Manager (DSM) |
Thales key manager that is available in hardware and virtual versions. |
Cluster |
Multiple DSM VMs or appliances sharing configuration settings and encryption keys. Configuration and key life-cycle changes made to one cluster node are replicated to all members within the same cluster. |
Vormetric Transparent Encryption (VTE) |
Thales agent or driver which runs on the application host. |
Guarded device |
Host device that is encrypted by Thales VTE. |