Skip to main content

Introduction

Venafi's “TLS Protect Datacenter” (formerly Trust Protection Platform) and “CodeSign Protect” are leading products in Machine Identity Management (IoT). Integration with Securosys Primus HSM (on-premises) or CloudsHSM (HSM as a Service) enables to increase security and comply with strongest regulatory requirements by securely generating, storing, and using the sensitive key materials for machine identities on FIPS 140-2 Level 3 and CC EAL4+ certified Hardware Security Modules.

Integrating Securosys CloudsHSM or Primus HSM with Venafi’s TLS Protect Datacenter provides an array of benefits including:

  • Protect identities with
    • Highest-grade secure hardware key storage and protection
    • Securely generate keys from physical true random number generator
  • Largest built-in key store, or infinite key store on CloudsHSM
  • Fast regional access, load-balancing, and automatic redundancy failover, thanks to built-in large geo-redundant HA cluster mechanisms
  • Proof digital identities with built-in key attestation and audit features
  • Decanus terminal allows for easy and cost-efficient remote management of HSM clusters and CloudsHSM partitions (2-of-n, 2FA) without compromising security.
  • All HSMs are developed and manufactured in Switzerland using a trusted supply chain and are certified according FIPS140-2 level 3 and CC EAL4+ (EN419221-5) to fulfill strongest compliance regulations.

Securosys CloudsHSM is a Hardware Security Module (HSM) available as cloud service, without having to worry about time consuming things like evaluation, setup, operation, redundancy, and maintenance of the HSM infrastructure, and is scalable according to your needs. Redundant cluster architecture, providing different redundant regions up to redundant world-wide cluster.

Additional resources