Cosmian Command Line Interface (CLI)¶
KMS CLI is the Command Line Interface to drive KMS.
KMS CLI provides a powerful interface to manage and secure your cryptographic keys and secrets using the Cosmian Key Management System KMS. The KMS offers a high-performance, scalable solution with unique features such as confidential execution in zero-trust environments, compliance with KMIP 2.1, and support for various cryptographic algorithms and protocols.
Beyond the CLI interface, Cosmian also provides a PKCS#11 library (libcosmian_pkcs11.so) that enables seamless integration with existing cryptographic infrastructure. This library acts as a bridge between applications requiring PKCS#11 interfaces and the Cosmian KMS, providing:
- Database Encryption Support: Integration with Oracle Database Transparent Data Encryption (TDE) for automatic encryption of data at rest, either through Oracle Key Vault or direct HSM communication
- Disk Encryption Support: Compatible with popular disk encryption solutions including VeraCrypt, LUKS, and Cryhod for protecting data on storage devices
The PKCS#11 library enables organizations to leverage Cosmian’s advanced cryptographic capabilities while maintaining compatibility with their existing security infrastructure and workflows.
By leveraging KMS CLI, users can seamlessly integrate advanced cryptographic functionalities and secure search capabilities into their applications, enhancing data security and privacy.
Important
A Web UI version of the CLI is also available when installing the KMS server.
Info
Please download the latest versions for your Operating System from the Cosmian public packages repository See below for installation instructions.
Configuration¶
To communicate with the KMS, the clients cosmian expect the same configuration file. Please read the configuration section.