Cloud HSM: Difference between revisions
From Cramsession
Jump to navigationJump to search
✍️ Verified Author: Mflavell • Click to view professional profile & credentials
No edit summary |
No edit summary |
||
| Line 7: | Line 7: | ||
:* Validated to FIPS 140-2 Level 3 | :* Validated to FIPS 140-2 Level 3 | ||
:* Generate encryption keys | :* Generate encryption keys | ||
A cloud HSM is a custom keystore. | |||
* Allows the storage of keys outside the KMS in side the CloudHSM cluster. | |||
:* Useful if the key material cannot be stored in a shared envionment. | |||
Cloud HSM is deployed as a cluster: | |||
* The default size is 6 per account per region. | |||
* Cloud HSM manages key synchronizations for you. | |||
Revision as of 23:02, 4 June 2025
Overview
- This is a managed services for data encryption.
- HSM = Hardware Security Module [1]
- Validated to FIPS 140-2 Level 3
- Generate encryption keys
A cloud HSM is a custom keystore.
- Allows the storage of keys outside the KMS in side the CloudHSM cluster.
- Useful if the key material cannot be stored in a shared envionment.
Cloud HSM is deployed as a cluster:
- The default size is 6 per account per region.
- Cloud HSM manages key synchronizations for you.
