OpenStack Barbican

OpenStackSecurityFree tier available

Key management service for symmetric and asymmetric keys, certificates, and other secret material — pluggable backends include software KMS, HSM via PKCS#11, Vault, and KMIP-compliant appliances. Equivalent to AWS KMS / Azure Key Vault / Cloud KMS in the cross-provider mapping

FluffyStack tools
Add to Service BuilderAdd to CompareCompare with equivalentsExplore OpenStack in TreemapExplore security in HoneycombSee OpenStack regions on the World Map
DocumentationPricing

Sub-services (3)

Secrets

Generic secret store covering keys, certificates, passphrases

Orders

Async key-generation requests with HSM backends

Containers

Grouped secrets (e.g. certificate + private key + chain)

Tags

kmssecretshsmkmipopen-source

Equivalent services on other platforms

AWS KMSAWS

Create and manage cryptographic keys for encryption at rest and in transit with AWS-managed, customer-managed, and imported keys, automatic rotation, and FIPS 140-2 validated HSMs

Azure Key VaultAzure

Centralised vault for cryptographic keys, secrets, and certificates with HSM-backed keys, managed certificate renewal, and RBAC or access-policy enforcement

Cloud KMSGCP

Cloud-hosted key management for encryption at rest with symmetric and asymmetric keys, customer-supplied keys, HSM-backed keys, and automatic rotation

Pricing

Pricing model:free