Protect cryptographic keys against compromise while providing encryption, signing and authentication services, with Thales ProtectServer Hardware Security Modules (HSMs).
Application developers can create their own firmware and execute it within the secure confines of the highly flexible HSM. Known as functionality modules, the toolkits provide a comprehensive facility to develop and deploy custom firmware.
Wider range of cost, performance and form-factors available:
Protect cryptographic keys against compromise while providing encryption, signing and authentication services to secure sensitive applications including native blockchain algorithm support, with this security hardened network crypto server. Dual swappable AC power supplies provide high availability, business continuity and the flexibility to perform power supply and field maintenance.
Safeguard against physical and logical attacks with ProtectServer 3 External HSM – a heavy-duty steel appliance with tamper-protected security.
PCI Express x4-compliant card available in different performance levels to meet varied system requirements.
Integrate ProtectServer HSMs on either the same or distinct sub-nets and share between different networks in order to protect multiple business domains with a broad range of symmetric and asymmetric cryptographic performance levels.
Users and developers can facilitate seamless integration of cryptography and HSMs into a large array of pre-integrated third-party solutions or custom applications. The customisation Software Development Kit (SDK) enables the development, download and storage of custom-specific functionality modules (FMs) inside the secure boundary of the HSM.
Developers can test and debug custom firmware from the convenience of a desktop computer with the full-featured software emulator, rounding out the flexible development tools. Additionally, test applications without the need to install a ProtectServer HSM. When ready, simply install the HSM and redirect communication to the hardware – no software changes are necessary.
Benefit from superior performance with reliable, high quality components and a common architecture for all ProtectServer HSMs.
ProtectServer HSMs contain a FIPS 140-2 Level 3 validated cryptographic module to perform secure cryptographic processing in a high-assurance fashion. Built for industry standard security applications, ProtectServer HSM functions within a tamper-protected environment, providing secure storage for highly sensitive information, cryptographic keys, PINs and data.
Encrypt digital wallets and sign blockchain entries with ProtectServer HSMs, which support BIP32, Milenage and Tuak algorithms and SECP256k1 elliptic curve.
ProtectServer 3+ External HSMs employ dual swappable AC power supplies for high-availability data centres to help protect against power failures and enable business continuity by providing the ability to connect the appliance to two separate power sources to safeguard against the possible malfunction of one of the sources. This provides the necessary flexibility to perform maintenance, or replace a failed power supply or power feed with the assurance that your device will continue to operate.
Download the ProtectServer 3+ and 3 External HSM Data Sheet
Download the ProtectServer 2+ and 2 External HSM Data Sheet
Feature | Details |
|---|---|
| OS support | Windows, Linux |
| Cryptographic APIs | PKCS#11, CAPI/CNG, JCA/JCE, JCProv, OpenSSL |
| Cryptography |
|
| Rack Mountable | Standard 1U 19" rack mount appliance |
| Dimensions | 19” × 21” × 1.725” (482.6 mm × 533.4 mm × 43.815 mm) |
| Weight | 28lb (12.7 kg) |
| Input Voltage | 100-240 V, 50-60 Hz |
| Power Consumption | 100 W maximum, 84 W typical |
| Temperature | Operating 0° to 35°C, storage – 20° to 60°C |
| Relative Humidity | 5% to 95% (38°C) non-condensing |
| Host Interface |
|
| Security certifications |
|
| Management and monitoring |
|
| Safety and environmental compliance |
|
| Reliability |
|
Feature | Details |
|---|---|
| OS support | Windows, Linux |
| Cryptographic APIs | PKCS#11, CAPI/CNG, JCA/JCE, JCProv, OpenSSL |
| Cryptography |
|
| Rack Mountable | Standard 1U 19" rack mount appliance |
| Dimensions | 17.20” x 9.84” x 1.73” (437 mm x 270 mm x 44 mm) |
| Weight | 6.83 lb (3.1 kg) |
| Input Voltage | 100-240 V, 50-60 Hz |
| Power Consumption | 90W maximum, 58W typical |
| Temperature | Operating 0° to 35°C, storage – 20° to 60°C |
| Relative Humidity | 5% to 85% (38°C) non-condensing |
| Host Interface | 2 Gigabit Ethernet ports with Port Bonding |
| Security certifications | FIPS 140-2 Level 3 (pending) |
| Management and monitoring |
|
| Safety and environmental compliance |
|
| Reliability | Mean Time Between Failure (MTBF) 165,637 hours |
Download the ProtectServer 3 PCIe HSM data sheet
Download the ProtectServer 2 PCIe HSM data sheet
Feature | Details |
|---|---|
| OS support | Windows, Linux |
| Cryptographic APIs | PKCS#11, CAPI/CNG, JCA/JCE, JCProv, OpenSSL |
| Cryptography |
|
| Dimensions | Low Profile PCIe card, 2.74” x 6.57” x 0.74” (69.6 mm x 167 mm x 187 mm) |
| Power Consumption | 18 W maximum, 14 W typical |
| Heat dissipation | 61.4 BTU/hr maximum, 47.8 BTU/hr typical |
| Temperature | Operating 0° to 50°C, storage -20°C to 60°C |
| Relative Humidity | 5% to 95% (38°C) non-condensing |
| Host Interface | PCI-Express CEM 3.0, PCI, PCI Express Base 2.0 |
| Security certifications | FIPS 140-2 Level 3 (pending) |
| Safety, export and environmental compliance |
|
| Reliability |
|
ProtectServer 3 HSM is available in the following performance models to suit your needs:
ProtectServer 3 HSM | Model | Performance |
|---|---|---|
| ProtectServer External 3+ HSM | PL3500 | 3500 tps |
| ProtectServer External 3 HSM | PL3500 | 3500 RSA 1024 tps |
| PL220 | 220 RSA 1024 tps | |
| PL25 | 25 RSA 1024 tps | |
| ProtectServer PCIe HSM | PL3500 | 3500 RSA 1024 tps |
| PL220 | 220 RSA 1024 tps | |
| PL25 | 25 RSA 1024 tps |
* tps = transactions per second
Thales ProtectServer 3 Network Hardware Security Modules (HSMs) are security hardened network crypto servers designed to protect cryptographic keys against compromise, while providing encryption, signing and authentication services to secure sensitive applications. ...
Thales ProtectServer 3 PCIe Hardware Security Module (HSM) provides tamper-protected hardware security for server systems and applications that require high-performance symmetric and asymmetric cryptographic operations.
HSM(ハードウェアセキュリティモジュール)とは、暗号鍵を保 護するために特別に設計された専用デバイスです。FIPS140-2認定の強固な耐タ ンパ性のデバイス内で暗号鍵を安全に管理、処理、保管するこ とにより、セキュリティ意識が極めて高い組織の暗号化インフ ラストラクチャを保護する信頼の基点として機能します。
Blockchain is one of those industry buzzwords that you seem to hear everywhere, but what exactly is it and can you trust it? For the most part, enterprises are implementing blockchain without truly understanding its purpose, and as much as 90% of enterprise blockchain projects...
Secure cold storage of cryptocurrencies such as Bitcoin or Ethereum, is a difficult and complex challenge. Traditional paper wallet-based solutions may be effective for the most basic use cases, but they present a substantial challenge for more complex environments as they do...
The crypto assets (cryptocurrency) market is vibrant once again. Financial institutions, including banks and securities companies, are expected to enter the market. Furthermore, digital assets that go beyond crypto assets, such as security tokens and stable coins, are also...
Epic Lanka provides leading e-security and e-payment solutions to corporations in Sri Lanka and neighboring regions. Established in 1998, Epic Lanka develops and implements innovative solutions in such areas as secure electronic payments, information systems security, mobile...