Resources For IT Professionals
Post an article
Wikis - Page Details
  • First published by
  • When: 7 May 2012 11:10 AM
  • Last revision by (cMVP, Microsoft Community Contributo)
  • When: 2 Feb 2013 10:09 AM
  • Revisions: 3
  • Comments: 2
Options
RSSSubscribe to Article (RSS)
Can You Improve This Article?
Positively! Click Sign In to add the tip, solution, correction or comment that will help other users.

Report inappropriate content using these instructions.
Wiki  >  TechNet Articles  >  Hardware Security Module (HSM)

Hardware Security Module (HSM)

Hardware Security Module (HSM)

A hardware security module (HSM) is a hardware encryption device that's connected to a server at the device level, typically using PCI, SCSI, serial, or USB interfaces. An HSM is a dedicated hardware device that is managed separately from the operating system. These modules provide a secure hardware store for CA keys, as well as a dedicated cryptographic processor to accelerate signing and encrypting operations. Windows utilizes the HSM through the CryptoAPI interfaces—the HSM functions as a cryptographic service provider (CSP) device. 

An HSM can provide secure operational management - protected by multi-layered hardware and software tokens - as well as a number of other key features, including:

  • Hardware-based, cryptographic operations (such as random number generation, key generation, digital signatures, and key archive and recovery).
  • Hardware protection of valuable private keys used to secure asymmetric cryptographic operations.
  • Secure management of private keys.
  • Acceleration of cryptographic operations. (This relieves the host server of having to perform processor-intensive, cryptographic calculations.)
  • Load balancing and failover in hardware modules using multiple HSMs linked together through a daisy chain.

Additional References
Windows 2000 Server and PKI: Using the nCipher Hardware Security Module
Set Up a Certification Authority by Using a Hardware Security Module
CREN: Hardware Security Modules
SafeNet Hardware Security Modules
Thales Hardware Security Modules

, , , , , , , , , [Edit tags]
Leave a Comment
  • Please add 1 and 4 and type the answer here:
  • Post
Wiki - Revision Comment List(Revision Comment)
Sort by: Published Date | Most Recent | Most Useful
Comments
  • 2 Feb 2013 10:09 AM

    Richard Mueller edited Revision 1. Comment: Removed (en-US) from title, added tag

  • 15 Jun 2012 2:22 PM

    Kurt L Hudson edited Original. Comment: Updated title

Page 1 of 1 (2 items)
Wikis - Comment List
Sort by: Published Date | Most Recent | Most Useful
Posting comments is temporarily disabled until 10:00am PST on Saturday, December 14th. Thank you for your patience.
Comments
  • Posted by
    on 15 Jun 2012 2:22 PM

    Kurt L Hudson edited Original. Comment: Updated title

  • Posted by
    on 2 Feb 2013 10:09 AM

    Richard Mueller edited Revision 1. Comment: Removed (en-US) from title, added tag

Page 1 of 1 (2 items)