Primus HSM - Standards & Certifications
The Securosys Primus HSM has earned the certifications listed on this page.
Some certifications require the device to have specific firmware versions installed and mandate compliance with designated operating instructions detailed in the Primus HSM User Guide.
Certification is currently limited to X- and E-Series devices when running firmware v2.8.21.
X2- and E2-Series devices can only run firmware 3.x.
To cover them, firmware 3.1 is currently undergoing certification.
FIPS 140-2 Level 3
This certification indicates that the HSM has strong physical security, controlled access, and robust key management practices, making it suitable for protecting sensitive information in various applications.
- FIPS 140-2 Level 3 - Certificate #4583 | Certificate #3430
- FIPS 140-3 (Certification in progress) - You can follow NIST's current testing list, where the Securosys Primus HSM has been submitted for evaluation since December 2024. Implementation Under Test List
For operation in FIPS mode, Securosys provides FIPS-approved firmware that meets FIPS 140-2 Level 3 compliance requirements. Customers also have the option to choose non-FIPS mode.
View Operation Modes for a more granular overview.
As of 10.02.2023, the Primus HMS devices are FIPS 140-2 Level 3 certified for firmware v2.5.14-f.
More details can be found on our Support Portal,
including firmware files, release notes and user guide.
Our firmware v3.1.0 is currently undergoing evaluation for FIPS 140-3 Level 3
and is expected to be certified in 2025.
Common Criteria EAL4+
View the HSM certificate | View the QSCD attestation
Securosys HSMs are Common Criteria EAL4+ certified and comply with eIDAS protection profile EN 419 221-5, relevant for compliant qualified signatures. Common Criteria EAL4 is recognized under the SOG-IS body.
This ensures compliance with the strict requirements for Qualified Electronic Signature (QSCD) and Seal Creation Device (QSealCD) as well as SCAL2 compliance according to EU regulation 910/2014, normed in EN 419-241-2.
View Operation Modes for a more granular overview.
As of 18.01.2024, the Primus HMS devices are CC EAL4+ certified for firmware v2.8.21.
More details can be found on our Support Portal,
including firmware files, release notes and user guide.
Our firmware v3.1.0 is currently undergoing evaluation for CC and is expected to be certified in 2025.
The current certificate for firmware v2.8.21 is valid until April 2026.
Cryptographic Algorithm Validation Program (CAVP)
This program indicates that the Algorithms and Functions their ability to securely handle encryption, key management, and other cryptographic operations in compliance with federal regulations.
Explore the detailed algorithm certificates.