Collaborate Disseminate
For a cryptocurrency application, I take it that pretty much the main function of an HSM is to generate/store keys; it mainly just signs data that is fed to it? But what controls that? Will it happily just sign anything that … Continue reading Are there any limits to what a HSM will sign?
I am looking for best practices regarding TLS private key storage for small single chip embedded systems, such as Cortex-M MCUs, with monolithic firmware stored in internal flash. Most recommendations seem to be very PC-centric, and in mos… Continue reading TLS private key storage for embedded systems. Are there any best practices?
I am interested in the general security goals for public key cryptography and the different elements of it.
Outline of the use-case:
My use case is an embedded device, which will use TLS to establish secure communication bet… Continue reading Storage of certificates and keys in hardware security modules (Use-case TLS)
Aidan Finn tells you about a service in Azure called Key Vault, which you can think of as secret storage/handling-as-a-service.
The post How Can I Store Secrets in Azure? appeared first on Petri.
I want to implement a network of HSMs to secure millions of private keys. To increase fault tolerance and speed, I would want this network to run RAID 50 (striping, parity and duplication). As I understand, one of the key poi… Continue reading RAID on HSM network
We are running SQL server 2008 Enterprise and would like to implement Extensible Key Management for a relatively small database. Could we use the Yubi HSM in a separate box to store the keys? Thanks
We are currently using ForgeRock as an Identity and Access Management solution, this is being hosted on Infrastructure-as-a-Service machines in Azure, i.e. Virtual Machine Scale Sets. There is a requirement to protect the pr… Continue reading Is it possible to configure the Java Cryptography Architecture to use Azure Key Vault as a crypto provider?
Given a setup where a server, that is running some sort of a trading bot, is connected to a HSM. That HSM is containing the private key to asymetrically sign all the transactions issued by the bot/server.
Now an attack to t… Continue reading How are Transactions verified before signed by a HSM?
I’m trying to weigh my options for a personal HSM. I wish to store both passwords and private PGP keys. I’ve been doing my research but I’m not a security expert and am feeling slightly overwhelmed; please educate me.
I am pretty new to HSMs, and I need an HSM that supports a large number of keys (around few hundred thousand at least).
Is there a limit in a number of keys an HSM support? I can’t seem to find this information anywhere, I … Continue reading What is the limit of the number of keys an HSM supports?