Skip to main content

PLATINUM / PLATINUM (Enterprise)

PLATINUM offers dedicated Hardware Security Modules (HSMs) with customizable cluster sizes, performance, capacity and deployment locations in our datacenters. Choose between the Basic tier, featuring Primus HSM E-series HSMs, or the Enterprise tier, which utilizes the Primus HSM X-series HSMs for enhanced performance. Every subscription comes with a single partition, and extra partitions can be obtained.

For more information about the Platinum Services and Hosted Operation Services, please contact Securosys sales.

Service Description

This service provides access to Securosys Cloud HSM Service partitions with the following attributes:

AttributeDescription
Client ConnectionsNot limited
Storage CapacityPlatinum: 120MB
Platinum Enterprise: 240MB
Additional Storage Capacity is available in increments of 120MB
PerformancePlatinum: Up to 1200 operations (RSA-4096) per minutes
Platinum Enterprise: Up to 12000 operations (RSA-4096) per minutes
Key GenerationMax. 1 key per second
Cryptographic APIsPKCS#11, Java (JCA/JCE), Microsoft CNG or REST
Supported FunctionsSee the Supported Algorithms and Functions list
Operational Modenon-FIPS or Strict FIPS mode and Common Criteria compliant

Service Options

In addition to the service description provided above, the following table outlines the available options and indicates whether they are currently enabled, disabled, or can be optionally selected:

OptionAvailability
Attestation and Partition AuditEnabled
Partition AdministrationOption. Requires purchase or rent of Decanus Terminal
Smart Key AttributesOption
Transaction Security Broker (TSB)Option
Crypto CurrenciesOption
Post-Quantum Cryptographic AlgorithmsOption
Timestamp Service (RFC3161 compliant)Option

Regions

PLATINUM is accessible according user order through either a Global or Regional cluster, with options including Swiss, German, US, or Singapore clusters, ensuring optimal reach and performance tailored to specific geographic needs.

Partition Policy Settings

The following tables provide an overview of all partition policy settings, indicating whether they are enabled, disabled, or available for selection by the customer upon ordering and wether they can be modified afterwards.

API Settings

API ActivationAvailability
PKCS#11Selectable upon ordering
Java (JCA/JCE)Selectable upon ordering
Microsoft CNGSelectable upon ordering
RESTSelectable upon ordering
Client API AccessEnabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration to take partition completely offline.

Partition Settings

PolicyAvailability
Key ImportSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Key ExportSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Key InvalidationSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Partition R/ODisabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Session ObjectsEnabled
Object DestructionSelectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration.
Object UsageEnabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration.

Service Management

The CloudHSM PLATINUM partition offers versatile management options to make changes to the partition policy setting. Users can utilize the Decanus Terminal via Partition Administration or submit change requests on the Support Portal.