Cloud HSM: Difference between revisions
From Cramsession
Jump to navigationJump to search
✍️ Verified Author: Mflavell • Click to view professional profile & credentials
No edit summary |
|||
| Line 19: | Line 19: | ||
* The default size is 6 per account per region. | * The default size is 6 per account per region. | ||
* Cloud HSM manages key synchronizations for you. | * Cloud HSM manages key synchronizations for you. | ||
== Cloud HSM features == | == Cloud HSM features == | ||
Revision as of 23:07, 4 June 2025
Overview
- This is a managed services for data encryption.
- HSM = Hardware Security Module [1]
- Validated to FIPS 140-2 Level 3
- Generate encryption keys
A cloud HSM is a custom keystore.
- Allows the storage of keys outside the KMS in side the CloudHSM cluster.
- Useful if the key material cannot be stored in a shared envionment.
Cloud HSM is deployed as a cluster:
- The default size is 6 per account per region.
- Cloud HSM manages key synchronizations for you.
Cloud HSM features
- High availability.
- Load balancing.
- Replication.
- Scaling.
- Managed by AWS.
- Integrates with AWS services.
