Integrating External Hardware Security Modules

As an alternative to the native software cryptography, you can integrate one of the following as an external Hardware Security Module (HSM) with the ActivID Appliance:

Entrust^® nShield™ Connect HSM
Thales® Luna HSM

The HSM is responsible for encryption, decryption, key management, and digital signature creation and validation. This includes the following cryptographic operations:

Encrypting and decrypting database-sensitive information (that is, credentials, passwords, security questions and answers)
Encrypting the hash of database row signatures

Note: For the supported external HSMs, see Cryptography.

Topics in this section: