Utimaco SecurityServer
Today’s digital transformation affects all entities – companies, institutions and organizations. The widespread use of digital systems is increasing the amount of generated data. As a result, all market participants are looking for solutions to secure their confidential data, processes, intellectual property and user and customer data. Preserving data or identity increases the need for authentication, electronic signatures and other PKI services that require the use of advanced cryptography. All the security of IT systems is only guaranteed if the cryptographic keys commonly used today are protected.
SecurityServer combines 40 years of experience in cryptography and hardware security module (HSM) technology into a unique offer that provides a foundation of trust for business application security and compliance. It provides an additional layer of security for an organization’s most valuable assets. Supporting a wide range of hardware platforms, it meets the performance and security requirements of both small businesses and large cryptographic infrastructures. It offers attractive value for money in a variety of implementation scenarios.
Key benefits of the solution:
- SecurityServer provides secure key generation, storage and use inside a tamper-proof HSM module. In line with market requirements, SecurityServer enables the generation of truly random numbers, ensuring the uniqueness of keys
- Easy licensing model. SecurityServer supports an unlimited number of clients without restrictions, supports multiple algorithms without the need to complete their set, which reduces the cost of use
- SecurityServer simulator makes it easy to implement and test business applications before deploying them into production
- Support for internal and external key storage is possible, providing backup flexibility
An extensive developer toolkit (SDK) - Q-safe software extension for SecurityServer enables protection against future quantum computing threats. It supports PQC algorithms recommended by NIST and BSI. Q-safe simulator allows testing of PQC algorithms before purchase
- Multiple authentication options
Datasheet
Performance
Performance is measured in transactions/signatures per second (TPS)
RSA performance | model CSe10 | model CSe100 |
---|---|---|
SecurityServer PCI/Network | 17 - 2048 bit 2 - 4096 bit | 90 - 2048 bit 14 - 4096 bit |
Note: performance may depend on the operating system, applications, local network structure and other factors.
Supported cryptographic algorithms | |
---|---|
Symmetric algorithms | AES, Triple-DES, DES, MAC, CMAC, HMAC |
Asymmetric algorithms | RSA, DSA, ECDSA with NIST, Brainpool and FRP256v1 curves, EdDSA, DH, ECDH with NIST, Brainpool, RP256v1 and Montgomery curves, Chinese SM2, SM3 and SM4 |
HASH algorithms | SHA-1, SHA2-Family, SHA3, RIPEMD |
Technical specification | |
---|---|
Physical characteristics | Network Apliance: 19'' 1U ( 446mm x 533,4mm x 44mm) PCIe card: 18,6mm x 111,15mm x 167,65 mm |
Supported OS* | Windows and Linux |
API | PKCS #11, Java Cryptography Extension (JCE), Microsoft Crypto API (CSP) and Cryptography Next Generation (CNG), Microsoft SQL Extensible Key Management (SQLEKM), OpenSSL, Cryptographic eXtended services Interface (CXI) |
Certifications &Compliances | FIPS 140-2 level 3 IEC/EN 60950-1, IEC/EN 62368-1, UL, CB Certificate, CE, FCC Class B, RoHS II, REACH |