Prerequisites
Deployment Architecture
To use the Transaction Security Broker (TSB) and its REST API, you are going to need two components:
- An HSM and
- A TSB.
For the HSM, you can either use an on-premise Primus HSM or a CloudHSM (HSM-as-a-Service). For the TSB, you can either host it yourself, or use the TSB-as-a-Service that is part of the Securosys Cloud.
While all combinations are possible, Securosys recommends that you either fully use the CloudHSM for both the HSM and the TSB, or fully host both on-premise. For a hybrid setup, please reach out to Securosys.
The simplest option is to use the CloudHSM for both. In this case, you can skip this installation guide, since Securosys manages everything for you.
Docker
The TSB is distributed as a Docker image. If you want to host the TSB on-premise, you need to have Docker installed. Additionally, this guide will use Docker Compose to manage the multi-container deployment.
On Linux, install the Docker Engine and Docker Compose. On Windows, install Docker Desktop.