When comparing Box Enterprise Key Management vs Keywhiz, the Slant community recommends Box Enterprise Key Management for most people. In the question“What are the best shared secret managers?” Box Enterprise Key Management is ranked 2nd while Keywhiz is ranked 9th. The most important reason people chose Box Enterprise Key Management is:
Box provides dedicated hardware (HSMs) that the enterprise has complete control over and can provide access to Box in a granular way with Box in turn providing cloud services such as deduplication, search indexing, information rights management, etc.
Ranked in these QuestionsQuestion Ranking
Pros
Pro Box provides cloud services with enterprise maintaining control over encryption keys
Box provides dedicated hardware (HSMs) that the enterprise has complete control over and can provide access to Box in a granular way with Box in turn providing cloud services such as deduplication, search indexing, information rights management, etc.
Pro Versioning support
Keywhiz supports versioning secrets through its admin UI or CLI utilities.
Cons
Con Costs more than the standard Box service
Box EKM is built as a complementary but still separate service than the storage service that Box provides. As such, it costs extra to use EKM to store secrets of data hosted with Box's cloud hosting.
Con Still in alpha stage
Keywhiz is still in a very early stage of its development and may not be ready for production yet since it's prone to changes and may have some security issues.