Vectera Plus
Enterprise-class hardware security module
Cryptographic excellence for financial and general-purpose use
One HSM, endless applications
The Vectera Plus is a hardware security module (HSM) designed for both financial and general-purpose use. The Vectera Plus is capable of the industry’s fastest processing speeds and can integrate with any major host application software. It supports all major encryption algorithms and comes as a FIPS 140-2 Level 3-validated secure cryptographic device (SCD).
Data protection
- Database encryption
- File encryption
- Application encryption
- Vaultless tokenization
Key management
- Key lifecycle management
- Financial key management
Third-party application integration
- Oracle Key Vault
- Check Point Security Gateway
- VMware vSphere
- Java Key Tool
- R3 – Corda Enterprise
- Microsoft Active Directory Certificate Services (AD CS)
- Microsoft Active Directory Rights Management Services
- Microsoft Active Directory Federation Services (AD FS)
- Microsoft SQL Server
- Venafi Trust Protection Platform (TPP)
Testing and development
Perform testing, development, and rapid prototyping in a secure code environment (SCE).
HSM virtualization
Use cryptographic resources more efficiently by segmenting functionality using HSM virtualization and application partitioning.
Robust support
Leverage all major encryption algorithms, standard client libraries, and interfaces (AES, RSA, ECC, PKCS #11, Java, and so on).
Custom scripting
Load, test, and execute custom applications and code within the boundary of the HSM’s Secure Code Environment (SCE).
Why choose the Vectera Plus?
The Vectera Plus combines general-purpose and financial transaction processing. The benefits include reduced up-front capital expenditure, lower overhead costs for maintenance, simplified training, and reduced effort to integrate with 3rd party applications.
Click diagram to enlarge
Unlimited use cases
Whether securing databases, protecting emails, or encrypting files in compliance with HIPAA, the Vectera Plus can fill nearly any cryptographic role.
Ease of use
An intuitive GUI makes configuration and key loading easy. Connect the Vectera Plus to the Excrypt Touch for simple point-and-click key loading and device configuration.
Strategic integration
Integrating the Vectera Plus with other Futurex products amplifies speed, availability, and range of functionality to meet any cryptographic requirement.
Algorithmic versatility
The Vectera Plus supports all major cryptographic algorithms. Continuous support for new algorithms ensures your infrastructure remains secure.
Secure code environment (SCE)
An SCE is a powerful tool for organizations to guard their applications, custom code, and API extensions.
Full compliance
Futurex solutions comply with current and emerging regulatory requirements including PCI DSS, FIPS 140-2 Level 3, ANSI X9.24 part 1 and 2 – TR-39, and FCC part 15 – class B
Multi-purpose and standards-compliant
Encryption and data processing for financial and general purpose use
Vectera Plus specifications
Microsoft AD CS
Securely support Microsoft AD CS in creation and management of client Public Key Infrastructure (PKI) certificates by centralizing private key storage in the Vectera Plus hardware security module. For more information on Futurex’s AD CS integration methods, visit our Microsoft AD CS Technology Solutions page, or download our informational brochure.
Oracle Key Vault
Establish a Root-of-Trust (ROT) for Oracle databases in the Vectera Plus HSM and provide critical protection to the wallet password. The Vectera Plus provides high-assurance security for the Transparent Data Encryption process and prevents attempts to recover keys from the Oracle Key Vault server in unauthorized environments without disrupting existing features like High Availability, backup, or restore.
Microsoft SQL Server
Take advantage of the vast set of features and administrative functionality the Vectera Plus HSM provides by using it to offload Transparent Data Encryption (TDE) keys for Microsoft SQL Server. Effectively manage the full key lifecycle, securely generate and issue database encryption keys, and configure specific key management functions like key rotation and aging. Read more about data encryption with SQL Server & HSMs.
VMware vSphere
Securely encrypt virtual machines and associated files by configuring the VMware ESXi hypervisor to store and manage Key Encryption Keys in the Vectera Plus HSM, ensuring enhanced security for data-at-rest and meeting industry compliance requirements.
Java KeyTool
Seamlessly secure keys in the Vectera Plus HSM with Java KeyTool for use in a wide range of general-purpose applications.
Venafi Trust Protection Platform (TPP)
For effective key & certificate lifecycle management, integrate the Vectera Plus HSM with Venafi’s Trust Protection Platform. Visit the Venafi.com Marketplace to download the integration guide and get started.
R3 – Corda Enterprise
Further secure transaction environments by instructing Corda Enterprise nodes to store their Legal Identity Keys in the Vectera Plus HSM. Learn more about configuring your Corda environment with Futurex.
Check Point Security Gateway
Integrate the Vectera Plus HSM into a Check Point Security environment to add an extra layer of security to the network. Configure the Check Point Security Gateway to effectively store cryptographic key pairs and distribute Certificate Authority (CA) certificates.
Hardware features
- Dual, redundant, hot-swappable power supplies
- Dual gigabit Ethernet ports
- Failover link with additional Vectera Plus devices using the Guardian Series 3 for system-wide redundancy
- Secure Cryptographic Device (SCD) with tamper responsive barrier to protect sensitive data
Operating conditions
- Power: 100 – 240 VAC 50/60 Hz. 225 Watts
- Operating temp: -40° to 140°F (-40° to 60°C)
- Storage temp: -40° to 140°F (-40° to 60°C)
- Operating humidity: 20% to 80% non-condensing
- Storage humidity: 5% to 95% non-condensing
Dimensions and weight
- Weight: 36 lbs (16.33 kg)
- Width: 19 inches (48.26 cm)
- Height: 1U – 1.72 inches (4.37 cm)
- Depth: 19.4 inches (49.38 cm)
Powering the VirtuCrypt cloud
VirtuCrypt key management services are backed by HSMs with hardened, FIPS 140-2 Level 3 validated technology. Whether an organization requires complete infrastructure management or simply more functionality for existing Futurex infrastructure, VirtuCrypt offers a variety of service structures designed to meet security requirements.
Industry compliance standards
- FIPS 140-2 Level 3
- PCI-HSM
- ANSI X9.24 part 1 and part 2 – TR-39
- RoHS
- FCC Part 15- Class B
Key types and protocols
- 3DES, AES (128-256), DSA (512-4096)
- RSA (512-8192)
- ECC (NIST recommended and user-defined)
- HMAC (MD5, SHA- 1, SHA-256-512)
- SHA-1
- SHA-2 (256-512)
Supported cryptographic functionality
- DES
- Triple-DES DUKPT
- Master/Session
- Tokenization
- TR-31
- AKB
- AES
- ECC
- RSA
- EMV 4.3
- PKCS #11
- Java
