key bridge ukm
The single platform solution for Payment HSM Key Management

KeyBRIDGE Payment HSM Key Manager

Securely manage and store all keys and sensitive data in one single, centralized location

  • Manages and stores all keys and sensitive data of a company or group
  • Provides a single solution with integrated HSM
  • Includes built-in support for 3rd party HSMs
  • Certified for Payment and General-Purpose Keys

Delivery Time:

About 2-4 weeks
Key Benefits

Key Benefits


Centralized and secure key storage solution

Manage and store all keys and sensitive data in one single, central location. A “single pane of glass” and comprehensive platform for key generation, import/export, translation, encryption, digital signature, secrets management and audit reporting.


Built-in HSM

Logical and physical security provided by the integrated HSM as the root of trust.



FIPS 140-2, level 3 and PCI PTS HSM compliant hardware security provides the root of trust for a comprehensive key management architecture designed to PCI PIN standards.



Securely manage and store all keys and sensitive data in a single, centralized location

KeyBRIDGE Payment HSM Key Manager is a standalone platform solution that stores all keys and sensitive data for an entire organization. This ensures that the organization has complete control of the key inventory and is not dependent on the availability of a database, service vendor or em-ployee. Its simple key management functionality spans the full key lifecycle from generation through to escrow and termination. The central user interface provides complete visibility of the entire key inventory at any time.

KeyBRIDGE Payment HSM Key Manager secures all keys and maintains support for the generation, import, and distribution of any key type. All keys are protected under a 256 Bit AES System Master Key, which can be used immediately, distributed as a cryptogram, or broken down into component parts or shares.

Additional value is added by allowing integration of further Utimaco HSMs as well as third party HSMs like Thales and SafeNet, enabling the user to perform key management functions using a single, easy-to-use interface with both local console and RESTful API access.

Detailed Key Inventory

  • Tracks generation, import, export, termination details and optional key expiration dates

Full life-cycle key management

  • Tracks all instances of imported and exported keys
  • Maintains key history even if a key has been terminated and removed from the system

Certified for Payment and General-Purpose use cases

  • FIPS 140-2 certified
  • PCI-HSM certified

High physical and logical security

  • Provides intrusion-resistant and tamper-evident hardware
  • Enables role-based access control (RBAC) enforced with dual control and split knowledge

Best-in class entropy and high-quality keys

  • NIST SP 800-90B
  • AIS 31DRG.4 compliant hash based DRNG
  • AIS31 PTG.2 compliant TRNG

Third party HSM integration

  • Enables integration with AT1000 Payment HSM, CryptoServer General Purpose HSM Cse-Series, Thales and SafeNet HSMs

Supporting various algorithms and mechanisms

  • RSA, DSA, ECDSA with NIST and Brainpool curves
  • DH, ECDH with NIST and Brainpool curves
  • AES, Triple-DES, DES
  • SHA-1, SHA2-Family, SHA3

Easy integration and use

  • Through UI & RESTful API interface
  • Central interface


Our on-premise options allow hosting the product directly on-site in your own network or data center.

  • LAN Appliance



AT1000 Payment HSM

Secure the Payment Ecosystem with AT1000 Payment HSM with its unique speed and global support

Find more details

Contact us

We look forward to answering your questions.

How can we help you?

Talk to one of our specialists and find out how Utimaco can support you today.
You have selected two different types of downloads, so you need to submit different forms which you can select via the two tabs.

Your download request(s):

    By submitting below form you will receive links for your selected downloads.

    Your download request(s):

      For this type of documents, your e-mail address needs to be verified. You will receive the links for your selected downloads via e-mail after submitting below form.

      About Utimaco's Downloads

      Visit our Downloads section and select from resources such as brochures, data sheets, white papers and much more. You can view and save almost all of them directly (by clicking the download button).

      For some documents, your e-mail address needs to be verified. The button contains an e-mail icon.

      Download via e-mail


      A click on such a button opens an online form which we kindly ask you to fill and submit. You can collect several downloads of this type and receive the links via e-mail by simply submitting one form for all of them. Your current collection is empty.