Azure Key Vault Storage Account Keys management and auto-rotation in public preview Pricing | Key Vault webpage Azure Key Vault helps safeguard cryptographic keys and secrets, such as authentication keys, storage account keys, data encryption keys, .PFX files, and passwords, used by cloud apps and services. By using Key Vault, you can encrypt keys and secrets by using keys that are protected by hardware security modules (HSMs). For added assurance, you can import or generate keys in HSMs. Key Vault allows you to:
| ✓ | Increase security and control over keys and passwords. |
| ✓ | Create and import encryption keys in minutes. |
| ✓ | Reduce latency with cloud scale and global redundancy. |
| ✓ | Simplify and automate tasks for SSL/TLS certificates. |
Key Vault, via the Azure Storage Account Keys management and auto-rotation feature (in public preview), now implements Storage account keys as Key Vault secrets for authenticating with a Storage account and will perform several internal management functions on your behalf, including renewing (rotating) the keys for you automatically. Key Vault also removes the need for your direct contact with a Storage account key by offering shared access signatures (SAS) as a method (SAS tokens follow least-privilege principle for security). For more information, please visit the Azure Key Vault Storage Account Keys documentation webpage. Key renewal (rotation) will be free of charge while the feature is in public preview. After the public preview ends, pricing will apply for each Storage account key renewal (rotation), in addition to operations charges, to all secrets stored in Key Vault. For more information about pricing, please visit the Key Vault Pricing webpage. To learn more, please visit the Key Vault webpage. For a complete list of announcements and updates, visit Azure updates.