Utimaco CryptoServer Hardware Security Module
Updated Nov. 12 2020

Utimaco and Venafi join forces to protect machine identities by pairing certificate lifecycle management with FIPS 140-2 Level 3 or Level 4 for physical Hardware Security Module (HSM) key protection. Using the CryptoServer HSM, master encryption keys can be generated and stored separate from the applications using them.
Business Outcomes
  • Reduce the risk of stolen keys from file system memory by leaving your master key inside the safe confines of a Hardware Security Module (HSM)

  • Future proof your business with the ability to incorporate any of the new Post Quantum Algorithms approved by FIPS

Integration Features
  • Unlimited Key Storage via the use of database extensions

  • Access on all major cloud service platforms, such as Azure, AWS and GCP, simultaneously

  • Common Criteria EAL4+, NATO Secret, EU Restricted, ANSSI, FIPS 140-2 Level 3

Solution Overview

Integrating Utimaco’s CryptoServer HSM with Venafi streamlines and automates machine identity protection throughout your organization. Enacting the most secure method for protecting the master key, our HSMs generate them using true random number generation, and store them in a non-exportable manner. Companies that isolate keys from the sensitive data, ensure that the master key is under their jurisdiction at any given time. Whether your PKI, IAM or databases are hosted on-premise or in the cloud, Utimaco will help you retain strict policy controls adhering to compliance regulations and internal requirements. Utimaco HSMs are available in both Level 3 and Level 4 FIPS 140-2 certified versions and are quantum-ready.