There are many reasons that organizations have a need for centralized key management; to prevent against databreaches, to be compliant, to protect data at rest, and to manage a high volume of encryption keys used across different infrastructures. A key manager makes sure that the keys stay separate from the encrypted data that needs to be protected, and provides an audit trail so that you can know who accessed what data at what point of time. A centralized and robust enterprise key management system is an effective and efficient way to secure keys and manage them during their entire lifecycle. With BYOK cloud integration, customers can upload the keys that are created in Utimaco ESKM to Microsoft Azure Key Vault and view all the keys available in the key vault. Customer also have the control over their keys and can secure them by restricting access by enabling or disabling the keys, as well as deleting keys from the cloud that no longer need. In order to do this, corresponding CSP must be configured and authorized for this and user must provide the authentication details to connect with the CSP. The Utimaco ESKM provides also Microsoft Purview Double Key Encryption (DKE) technology . DKE technology can be considered as the combination of Hold Your Own Key (HYOK) & Bring Your Own Key (BYOK) options for Azure Information Protocol (AIP), giving organizations complete control over their cryptographic keys and allowing them to protect their most sensitive Microsoft content whilst also meeting compliance requirements.