NGINX with Luna HSM - Integration Guide

This document guides you through the steps of integrating Luna HSM and Luna Cloud HSM with NGINX. NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. NGINX is known for its high performance, stability, rich feature set, simple configuration, and low resource consumption. You can integrate Luna HSMs and Luna Cloud HSM services with NGINX to generate 2048-bit RSA key pairs for SSL and protect the private keys within a FIPS 140-2 certified hardware security module. The benefits of integrating Luna HSMs and Luna Cloud HSMs with NGINX include:

• Secure generation, storage, and protection of SSL keys on FIPS 140-2 level 3 validated hardware.
• Complete life cycle management of the keys.
• Access to HSM audit trail*.
• Significant performance improvements by off-loading cryptographic operations from servers.

*Luna Cloud HSM services do not have access to the secure audit trail.