|
CryptoServer VS-NfD is a Hardware Security Module suitable for a variety of use cases, such as PKI, Document and Code Signing, Data Encryption, Hardware Root of Trust and much more. The German Federal Office for Information Security (BSI) approved „CryptoServer CP5 VS-NfD“ according to the Qualified Certification Process - the product is the only BSI approved VS-NfD Hardware Security Module and allows for the usage with data classified up to “NATO restricted”.
CryptoServer VS-NfD is available as a PCIe plug-in card or as a network-attached appliance.
Key Features
- Secure key storage and processing within the security boundary of the HSM
- Extensive key management with d
- Key authorization API and tool (acc. PP EN 419 221-5)
- “m out of n” quorum authentication (e.g. 3 out of 5)
- 2-factor authentication based on smartcards
- Role based access control and separation of duties
- Multi-tenancy support
- Remote management
- Dedicated software simulator for evaluation and integration testing
- Supported operating systems: Windows and Linux
- A variety of integrations with PKI applications, etc.
- Integrated Load balancing and HA functionality
- Flexible backup options
- All features included in product price
HSM Functionalities/Cryptographic algorithms
- RSA, ECDSA with NIST and Brainpool curves
- ECDH with NIST and Brainpool curves
- AES
- CMAC, HMAC
- SHA2-Family, SHA3
- Hash-based deterministic random number generator (DRG.4 acc. AIS 31)
- True random number generator (PTG.2 acc. AIS 31)
- Up to 3,000 RSA or 2,500 ECDSA signing operations in bulk processing mode
- All algorithms included in product price
Application programming interfaces (APIs)
- PKCS#11
- Microsoft Cryptography API: Next Generation (CNG)
- Cryptographic eXtended services Interface (CXI) – Utimaco‘s high performance interface ensures easy integration of cryptographic functionality into client applications
Product Specification
- Available as PCIe or Network Appliance
- Dual Hot Swap Power Supplies (Network Appliance)
- 2x 1Gb/s Network Interfaces (Network Appliance)
- Field replaceable fans (Network Appliance)
- MTBF up to 360 000h
CryptoServer VS-NfD is based on the industry Utimaco CryptoServer Se-Series Gen2 and as such benefits from Utimaco’s 35+ years of experience in building secure and reliable HSMs.
|