Guardian9000 Service Models: Abstraction Layer vs Out of Band
The Guardian9000 is an enterprise-class device designed to provide centralized configuration, monitoring, alerting, and load balancing for client Futurex devices, such as the Excrypt SSP9000, Vectera Series, ESM1000, and KMES Series Key Management Enterprise Server. Although the Guardian9000 is typically used in the abstraction layer service model, for varying reasons not every organization is able to use that method. Many organizations instead opt for the out of band management model. For a better understanding of how each model functions, we’ve outlined a brief comparison below:
In the abstraction layer service model, shown above, the Guardian9000 can manage all aspects of the Futurex device, including firmware updates. The advantage of this service model is that it enables load balancing, object/key caching, and key referencing: features that are not present in the out of band management service model.
In the out of band management service model, shown above, the Guardian9000 receives similar benefits as the abstraction layer model, with a few exceptions, such as: load balancing, object/key caching, and key referencing. Without these features, Guardian9000 is still able to be used similarly because of its inherent functionality.
So while the out of band service model is one alternative to the abstraction layer service models (for organizations that require a direct connection between host application and HSM), both models enable a set of features that are key in saving organizations time and resources that would otherwise be spent on managing multiple devices separately.
To learn more about how the Guardian9000 can be utilized in either mode, please download our Whitepaper.