Platinum
CloudHSM Platinum offers dedicated and expandable Hardware Security Modules (HSMs) with a default cluster sizes of two, and deployment locations at your choice in our datacenters. Every subscription comes with a single partition, and extra partitions can be obtained.
For more information, please contact sales.
Service Description
This service provides access to Securosys Cloud HSM Service partitions with the following attributes:
| Attribute | Description |
|---|---|
| Client Connections | Not limited |
| Storage Capacity | Platinum: 120MB Additional Storage Capacity is available in increments of 120MB |
| Performance | Platinum: Up to 12000 operations (RSA-4096) per minutes |
| Key Generation | Max. 1 key per second |
| Cryptographic APIs | PKCS#11, Java (JCA/JCE), Microsoft CNG or REST |
| Supported Functions | See the Supported Algorithms and Functions list |
| Operational Mode | Normal mode (non-FIPS) or Strict FIPS mode and Common Criteria compliant at choice |
Service Options
In addition to the service description provided above, the following table outlines the available options and indicates whether they are currently enabled, disabled, or can be optionally selected:
| Option | Availability |
|---|---|
| Attestation and Partition Audit | Enabled |
| Partition Administration | Option. Requires purchase or rent of Decanus Terminal |
| Smart Key Attributes (SKA) | Enabled |
| Transaction Security Broker (TSB) | Option |
| Cryptocurrencies | Option |
| Post-Quantum Cryptographic Algorithms | Enabled |
| Timestamp Service (RFC3161 compliant) | Enabled |
Regions
PLATINUM is accessible according user order through either a Global or Regional cluster, with options including Swiss, German, US, or Singapore clusters, ensuring optimal reach and performance tailored to specific geographic needs.
Partition Policy Settings
The following tables provide an overview of all partition policy settings, indicating whether they are enabled, disabled, or available for selection by the customer upon ordering and wether they can be modified afterwards.
API Settings
| API Activation | Availability |
|---|---|
| PKCS#11 | Included; can be enabled/disabled upon ordering |
| Java (JCA/JCE) | Included; can be enabled/disabled upon ordering |
| Microsoft CNG | Included; can be enabled/disabled upon ordering |
| REST | Included; can be enabled/disabled upon ordering |
| Client API Access | Enabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration to take partition completely offline. |
Partition Settings
| Policy | Availability |
|---|---|
| Key Import | Selectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration. |
| Key Export | Selectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration. |
| Key Invalidation | Selectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration. |
| Partition R/O | Disabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration. |
| Session Objects | Enabled |
| Object Destruction | Selectable upon ordering. Modifiable via Support Portal or Decanus Terminal via Partition Administration. |
| Object Usage | Enabled. Modifiable via Support Portal or Decanus Terminal via Partition Administration. |
Service Management
The CloudHSM PLATINUM partition offers versatile management options to make changes to the partition policy setting. Users can utilize the Decanus Terminal via Partition Administration or submit change requests on the Support Portal.