Application Integration

You can integrate existing applications with a Securosys HSM using the PKCS#11 API. This is possible because PKCS#11 is an open standard. Many applications (including the ones listed below) implement this standard, and are thus compatible with any HSM or security token that implements PKCS#11.

The integration steps are:

Install the Primus PKCS#11 Provider on your host and configure it. This tells the provider how to reach the HSM and gives it access credentials.
Configure your existing application to use the Primus PKCS#11 Provider. This tells your application which (of the many possible) PKCS#11 libraries it should use.

Existing Application Integrations

OpenSSL: Use the familiar OpenSSL interface to interact with the HSM.
Apache, nginx: Keep your TLS private keys in an HSM.
HashiCorp Vault, OpenBao: Seal your vault with HSM-backed keys.
Oracle TDE: Encrypt your database at rest.
And many more.

We are continuously adding integration guides for more applications. Visit the Solutions Explorer for an overview, or contact us for specific requests.

Get started withCloudHSM for free.

Need help?Contact Support.

Other questions?Ask Sales.

Existing Application Integrations​

Existing Application Integrations