eG Monitoring
 

Measures reported by ESKMServerReqTest

The HP Enterprise Secure Key Manager (ESKM) is a unified solution for encryption key management and security policy enforcement across the enterprise. The security server automates generation and retrieval of encryption keys for multiple client applications and devices based on security policies. This enables the key management transactions occur quickly and transparently to business application users. The security server encrypts or decrypts the data at rest or in motion based on the server requests received from the key server. The server requests can be any one of the following types:

  • Authentication

  • Certificate Export

  • Key Clone

  • Key Export

  • Key Generate

  • Key Import

  • Key Modify

The HP ESKM generates and manages the keys according to the above-mentioned server requests that are received from the key server. When the server has processed the server requests, the security server sends back the encrypted keys to the key server. Then, the key server delivers the encrypted keys to users in the most secure way. For uninterrupted delivery of the keys, the adminstrator should make sure that the server requests are processed successfully and sent back to the key server without any delay. When the delay occurs during processing of the server requests, the server requests are stored in a queue. If the server requests are kept in the queue for longer duration or failed due to network or manual errors, then, the appliance will experience processing bottleneck. This in turn will impact performance of the key server and also cause delay in delivery of the keys. Therefore, the administrator should closely monitor the server requests processing on the appliance and quickly initiate remedial measures to prevent the delay before the users complaint about slowness in key delivery. The ESKMServerReqTest test aids the administrator in this regard!

For each type of server request, this test reports total number of requests processed by the security server and also reveals number of requests that were processed successfully and number of requests that failed. This way, this test alerts the administrator to processing bottleneck at the security server.

The measures made by this test are as follows:

Measurement Description Measurement Unit Interpretation
Total_request Indicates the total number of server requests of this type that were processed on the security server. Number  
Success_request Indicates the number of server requests of this type that were processed successfully. Number A high value is desired for this measure.
Failed_request Indicates the number of server requests of this type that failed. Number Ideally, the value of this measure should be zero.