Eviden Integrates Its Sovereign Encryption into Salesforce's Hyperforce Platform
Eviden, the product branch of Atos Group, announced on Tuesday the integration of its Key Management System (KMS) into Salesforce's Hyperforce cloud platform. This solution allows organizations to encrypt their critical data with externally managed keys hosted in Europe, following the 'bring your own sovereign encryption' model.
An Integration Based on Data Sovereignty
Eviden's KMS integrates with Salesforce Hyperforce and Salesforce Shield: Platform Encryption. This combination enables enterprises and public sector organizations to maintain exclusive control of their encryption keys, which are independent and hosted in Europe. Critical data is encrypted using entirely external keys, ensuring isolation between application data and cryptographic keys.
This approach fits into a shared responsibility model where the cloud service provider manages the security of the infrastructure, while customers retain responsibility for the protection of their hosted data and the configuration of the platform according to their regulatory requirements and internal policies.
Confidential VMs and HSM to Enhance Protection
The solution relies on two key technologies. On one hand, the Eviden KMS operates on Confidential Virtual Machines (VMs) that completely isolate cryptographic operations in memory, neutralizing threats from underlying cloud infrastructure layers.
On the other hand, Eviden KMS interfaces directly with Eviden Proteccio HSM, the only Hardware Security Module (HSM) to have received the highest level of qualification from ANSSI. This architecture ensures that the master encryption key remains under the exclusive control of the client. The entire lifecycle of the keys, from their generation to revocation, is managed directly by the client.
Accelerating Cloud and AI Adoption with Trust
The integration of Eviden KMS into Hyperforce is positioned as a response to regulatory compliance challenges, including GDPR. By securing data at the source through external encryption, this joint solution aims to enable organizations to deploy Salesforce's AI solutions with confidence. It provides IT directors and information system security managers with the visibility, control, and traceability they expect to lead their digital transformation without compromising on security.