Managing HSM Integration

An HSM (Hardware Security Module) is a piece of hardware and associated software or firmware that usually resides in a PC or server and provides at least the minimal cryptographic functions. These functions include (but are not limited to) encryption, decryption, key generation, and hashing. The physical device offers physical tamper-resistance and has a user interface and a programmable interface. Other names for an HSM include Personal Computer Security Module (PCSM), Secure Application Module (SAM), Hardware Cryptographic Device, or Cryptographic Module.

To integrate a HSM device:

  1. To access the navigation pane, in the top-left corner of the screen, hover the mouse pointer over the icon.
  2. From the menu displayed, click Inventory > Device.
    The Device :: ADC page is displayed.

  3. On the Device :: ADC page, to configure the HSM settings, click the HSM tab.
    The Device :: HSM page is displayed.

  4. From the left pane, select the vendor for integrating the HSM device.
  5. For the selected vendor, click Configure Now.
  6. For all vendors, in the General information section, enter the following details:
    Field Description
    *Name Name of the device/settings being integrated
    Description Description/purpose of adding the device
    Implementation type From the drop-down menu, select one of the following options:
    • CSR Generation
    • Private key encryption
    • Both
    Default
    Data center From the drop-down menu, select the data center where the HSM AppViewX VM is deployed.
    All * marked fields are mandatory.
  7. In the Vendor specific details section, enter the required details.
    • To enter vendor specific details for Fortanix, click here.
    • To enter vendor specific details for Gemalto, click here.
    • To enter vendor specific details for SafeNet AT, click here.
    • To enter vendor specific details for Utimaco, click here.
  8. To save the HSM integration details, click Save.