Skip to main content

Platinum

CloudHSM Platinum offers dedicated and expandable Hardware Security Modules (HSMs) with a default cluster sizes of two, and deployment locations at your choice in our datacenters. Every subscription comes with a single partition, and extra partitions can be obtained.

For more information, please contact sales.

Service Description

This service provides access to Securosys Cloud HSM Service partitions with the following attributes:

AttributeDescription
Client ConnectionsNot limited
Storage CapacityPlatinum: 120MB
Additional Storage Capacity is available in increments of 120MB
PerformancePlatinum: Up to 12000 operations (RSA-4096) per minutes
Key GenerationMax. 1 key per second
Cryptographic APIsPKCS#11, Java (JCA/JCE), Microsoft CNG or REST
Supported FunctionsSee the Supported Algorithms and Functions list
Operational ModeNormal mode (non-FIPS) or Strict FIPS mode and Common Criteria compliant at choice

Service Options

In addition to the service description provided above, the following table outlines the available options and indicates whether they are currently enabled, disabled, or can be optionally selected:

OptionAvailability
Attestation and Partition AuditEnabled
Partition AdministrationOption. Requires purchase or rent of Decanus Terminal
Smart Key Attributes (SKA)Enabled
Transaction Security Broker (TSB)Option
CryptocurrenciesOption
Post-Quantum Cryptographic AlgorithmsEnabled
Timestamp Service (RFC3161 compliant)Enabled

Regions

PLATINUM is accessible according user order through either a Global or Regional cluster, with options including Swiss, German, US, or Singapore clusters, ensuring optimal reach and performance tailored to specific geographic needs.

Partition Policy Settings

The following tables provide an overview of all partition policy settings, indicating whether they are enabled, disabled, or available for selection by the customer upon ordering and wether they can be modified afterwards.

API Settings

API ActivationAvailability
PKCS#11Included; can be enabled/disabled upon ordering
Java (JCA/JCE)Included; can be enabled/disabled upon ordering
Microsoft CNGIncluded; can be enabled/disabled upon ordering
RESTIncluded; can be enabled/disabled upon ordering
Client API AccessEnabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration to take partition completely offline.

Partition Settings

PolicyAvailability
Key ImportSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Key ExportSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Key InvalidationSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Partition R/ODisabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Session ObjectsEnabled
Object DestructionSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Object UsageEnabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration.

Service Management

The CloudHSM PLATINUM partition offers versatile management options to make changes to the partition policy setting. Users can utilize the Decanus Terminal via Partition Administration or submit change requests on the Support Portal.