Unified Key Orchestrator within IBM Cloud Hyper Protect Crypto Services

Bridging Key Management Across Platforms: UX Design for IBM Cloud Hyper Protect Crypto Services Project Overview.

About the product

Unified Key Orchestrator for IBM z/OS is a highly technical product dedicated to cryptographic artifacts management.

My role

UX Designer, Lead Designer (of the z/OS version)

Main project goal

Deliver secure, cloud-native key management that simplifies complex cryptographic tasks. By aligning with the z/OS on-premise version, the project aimed to ensure a seamless user experience across IBM’s key management platforms.

Overview

As a UX Designer on the Unified Key Orchestrator (UKO) within IBM Cloud Hyper Protect Crypto Services (HPCS), I collaborated with a cross-functional team to bring enterprise-grade key management to the cloud. While UKO for z/OS offered a highly complex, on-premise solution with extensive functionality, the cloud version within HPCS was designed to provide users with a streamlined experience, bringing essential cryptographic controls to a cloud-native platform. My role involved ensuring seamless UX alignment between both versions, making IBM’s key management solutions intuitive and cohesive across on-premise and cloud environments.

The project received public recognition through the Red Dot Design Award, reflecting the team’s success in balancing secure functionality with user-centered design—a significant achievement in the cryptography domain.

Design Objectives and Challenges

In contrast to the on-premise UKO for z/OS, UKO within HPCS was built to meet the demands of cloud-first organizations looking for efficient cryptographic management without compromising security. Key design objectives included:

Simplifying Complex Operations

We aimed to reduce complexity by focusing on essential features, catering to users who need secure key management without the learning curve of a full-scale on-premise solution. Cross-Platform UX Consistency: By aligning the UI and workflows of the HPCS and z/OS versions, we aimed to make transitions seamless for users familiar with either platform, ensuring a unified experience in key management within IBM’s ecosystem.

screenshot2

Intuitive Navigation for Security Tasks

The design needed to facilitate smooth navigation for critical security functions while adhering to the stringent requirements of HPCS, which leverages IBM’s FIPS 140-2 Level 4 certified hardware for enhanced security.

mentalmodel

Design Process and Solutions

User-Centered Research

We gathered insights from both new cloud users and experienced z/OS administrators to understand the unique needs and expectations for cloud-based key management. Through interviews and feedback sessions, we identified key areas to simplify while retaining critical functionalities necessary for security and compliance.

user-centered

UX Alignment for Cross-Platform Familiarity

To ensure a cohesive user experience across cloud and on-premise versions, I collaborated closely with the z/OS design team. We harmonized key interactions, terminology, and visual cues so that users could intuitively navigate both systems, regardless of platform, enhancing their understanding of cryptographic management within IBM’s product suite.

screenshot1

Prototyping and Usability Testing

In iterative prototyping sessions, we conducted tests to validate the user flow, especially around complex tasks like key generation and rotation. Through usability testing, we refined touchpoints to reduce the cognitive load, ensuring users could complete key management tasks with minimal friction in the cloud.

Impact and Recognition

The UKO within HPCS delivered a seamless, cloud-native solution for key management, allowing enterprises to secure their cryptographic operations with ease and confidence. By providing a user-friendly interface that aligned with the on-premise z/OS version, we made IBM’s key management ecosystem more accessible and adaptable to the evolving needs of modern organizations.

The cloud version’s success was underscored by the Red Dot Design Award, a testament to the team’s commitment to usability and security. Our design approach balanced IBM’s strict security standards with a user-centric experience, making sophisticated cryptographic capabilities approachable for users of varying expertise.

Reflection

Working on UKO within HPCS deepened my experience in designing for security-focused, enterprise-grade products. This project underscored the importance of UX consistency in cross-platform products, especially within an organization as multifaceted as IBM. Collaborating on both the z/OS and HPCS versions allowed me to contribute to an interconnected user journey, empowering users to leverage IBM’s cryptographic solutions confidently, regardless of their platform preference.

together

The above article is personal and does not necessarily represent IBM’s positions, strategies or opinions.