A containerized platform approach for multiple cryptographic applications
The u.trust Converged HSM CSAR is a multi-tenant HSM platform that allows any organization to scale up and down as needed. Running either 16 or 31 isolated containers, it allows multiple truly independent and fully isolated containerized HSM instances to run within a FIPS 140-2 Level 3 certified HSM platform. Each instance is opaque, meaning that access to administrative and cryptographic functions is limited to the user, ensuring the required level of confidentiality for their sensitive data and keys.
It is easy to manage and gives end users complete control over their keys, with best-in-class performance and auditability.
Product Type:
PlatformSupported Firmwares:
Key Benefits
Details
A containerized platform approach for multiple cryptographic applications
The u.trust Converged HSM CSAR is a multi-tenant HSM platform that allows any organization to scale up and down as needed. Running either 16 or 31 isolated containers, it allows multiple truly independent and fully isolated containerized HSM instances to run within a FIPS 140-2 Level 3 certified HSM platform. Each instance is opaque, meaning that access to administrative and cryptographic functions is limited to the user, ensuring the required level of confidentiality for their sensitive data and keys. It is easy to manage and gives end users complete control over their keys, with best-in-class performance and auditability.
Cryptographic algorithms
- RSA, DSA, ECDSA with NIST and Brainpool curves, EdDSA
- DH, ECDH with NIST, Brainpool and Montgomery curves
- Edwards curves Ed25519 and Ed448
- AES, Triple-DES, DES
- MAC, CMAC, HMAC
- SHA-1, SHA-2, SHA-3, RIPEMD
- Hash-based deterministic random number generator (DRG.4 acc. AIS 31)
- True random number generator (PTG.2 acc. AIS 31)
- Chinese Algorithms
- All algorithms included in the product price
Cryptographic Interfaces (APIs)
- PKCS #11
- Java Cryptography Extension (JCE)
- Microsoft Crypto API (CSP), Cryptography Next Generation (CNG) and SQL
- Extensible Key Management (SQLEKM)
- OpenSSL
- Utimaco‘s comprehensive Cryptographic eXtended services Interface (CXI)