Software copy protection, license management, user authentication, internet security and smartcard technology

ProtectServer External - Hardware Security Module

Overview

  • Network attached tamper-protected Hardware Security Module certified to FIPS 140-2 Level 3
  • Performs symmetric and asymmetric key cryptography
  • Secure tamper resistant key storage
  • Off-loads servers from time-consuming cryptographic functions
  • Infield firmware upgrade via CD

ProtectServer External is a FIPS 140-2 Level 3 certified network attached Hardware Security Module (HSM) that connects via TCP/IP to a single machine or complete network (LAN) as a central cryptographic subsystem to perform symmetric and asymmetric cryptography. All cryptographic operations that would otherwise be performed on the insecure server are processed within the physically secure HSM - ensuring sensitive keys are always protected from compromise.

Solutions

ProtectServer External is typically employed to provide cryptographic services such as user and data authentication, message integrity, high-speed encryption, secure key storage and key management for e-Commerce and PKI applications.

Product Highlights

  • Most Secure
    ProtectServer External provides FIPS 140 certified physical and logical protection to cryptographic keys preventing unauthorized access to highly sensitive information. Tamper-resistant secure casing and tamper-responsive circuitry trigger automatic cryptographic key erasure upon tamper detection. Battery backed secure key storage, True Random Number Generator, plus smart card cryptographic key transfer, ensure the ultimate level of secrecy/integrity of keys and sensitive data.
  • High Performance with a Broad Range of Performance Levels
    Connected externally to the host computer through a TCP/IP over Ethernet interface, ProtectServer External eases the host systems cryptographic processing load and frees it to respond to more requests and perform other critical application processing.

    ProtectServer External offers a number of processing performance configurations:
    ProtectToolkit C/J/M/OpenSSL integration
    • PL50 ~ 50 RSA signatures (1024-bit) operations/sec
    • PL220 ~ 220 RSA signatures (1024-bit) operations/sec
    • PL450 ~ 450 RSA signatures (1024-bit) operations/sec
  • Extensive APIs
    ProtectServer External offers one of the most comprehensive portfolios of cryptographic APIs in the market place. They enable users to seamlessly integrate cryptography and HSMs into a large range of host-based pre-integrated third-party solutions, or custom applications developed by the client. The portfolio includes the broadest suite of PKCS#11 function sets available in an API, a Java JCA/JCE and Microsoft CryptoAPI provider implementation, plus seamless integration with OpenSSL via a PKCS#11-based engine implementation. In addition, the Software Development Kit (ProtectProcessing), incorporating convenient software emulation capabilities, enables the development, download and storing of custom specific functionality modules (FMs) inside the secure boundary of the HSM.
  • Easy Management
    ProtectServer External provides secure, easy to perform local and remote management plus infield upgrades. Easy interaction and key management are achieved using a GUI based interface, plus remote network access to the HSM facilitates off-site administration reducing related costs and time. Smart cards provide the highest security and convenience for secure backup, recovery and transfer of cryptographic keys. Upgrades can be cost effectively performed at the in-field location avoiding the cost of returning the product to the service location.


Tip a friendE-mail this
Printer friendlyPrint this

Perico AS, Trollåsveien 36, 1414 Trollåsveien, Tlf: +47 22064050, info@perico.no