[cabfpub] Known HSM vendors
Ben Wilson
ben.wilson at digicert.com
Mon Feb 29 15:50:25 UTC 2016
PrimeKey is another one. It OEMs Utimaco, I think.
-----Original Message-----
From: public-bounces at cabforum.org [mailto:public-bounces at cabforum.org] On Behalf Of Tim Hollebeek
Sent: Monday, February 29, 2016 8:49 AM
To: Peter Bowen <pzb at amzn.com>; CABFPub <public at cabforum.org>
Subject: Re: [cabfpub] Known HSM vendors
Two more that are quite common in the financial space:
Hewlett Packard (Atalla)
Various IBM secure crypto coprocessors
-----Original Message-----
From: public-bounces at cabforum.org [mailto:public-bounces at cabforum.org] On Behalf Of Peter Bowen
Sent: Monday, February 29, 2016 10:39 AM
To: CABFPub
Subject: [cabfpub] Known HSM vendors
At the meeting a couple of weeks, there was discussion about appropriate requirements for key storage. The discussion focused on storage of end user keys and did not touch on HSMs. However, in the current EVCS guidelines, we do note that HSMs are suitable for storing keys for those customers who prefer such. I would like to ensure that we allow this in all guidelines. To this end, I want to put together a list HSM vendors that are currently considered suitable by CAs so we can ensure that the requirements cover their products.
Right now, I’m aware of the following vendors who provide HSMs that are probably suitable for modern CA usage:
3S Group
Atos (Bull TrustWay Proteccio)
Cavium
Gemalto (SafeNet)
SafeNet Assured Technologies
Thales (nCipher)
Ultra Electronics (AEP)
Utimaco
Is anyone aware of other HSMs which do RSA and ECDSA and do at least 10 RSA signatures per second when using a 2048-bit key? (The last part is a fairly arbitrary cutoff to avoid listing smart cards.)
Thanks,
Peter
_______________________________________________
Public mailing list
Public at cabforum.org
http://scanmail.trustwave.com/?c=4062&d=lebU1rgWz6zaZciBgp0AS8PZPCG0pktv3c0n160Hww&s=5&u=https%3a%2f%2fcabforum%2eorg%2fmailman%2flistinfo%2fpublic
________________________________
This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.
_______________________________________________
Public mailing list
Public at cabforum.org
https://cabforum.org/mailman/listinfo/public
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4954 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20160229/25553fdf/attachment-0001.p7s>
More information about the Public
mailing list