Vectera Plus

Enterprise-class hardware security module

Cryptographic excellence for financial and general-purpose use

One HSM, endless applications

The Vectera Plus is a hardware security module (HSM) designed for both financial and general-purpose use. The Vectera Plus is capable of the industry’s fastest processing speeds and can integrate with any major host application software. It supports all major encryption algorithms and comes as a FIPS 140-2 Level 3-validated secure cryptographic device (SCD).

Sales brochureTalk to an expert

Data protection

  • Database encryption
  • File encryption
  • Application encryption
  • Vaultless tokenization

Key management

  • Key lifecycle management
  • Financial key management

Third-party application integration

  • Oracle Key Vault
  • Check Point Security Gateway
  • VMware vSphere
  • Java Key Tool
  • R3 – Corda Enterprise
  • Microsoft Active Directory Certificate Services (AD CS)
  • Microsoft Active Directory Rights Management Services
  • Microsoft Active Directory Federation Services (AD FS)
  • Microsoft SQL Server
  • Venafi Trust Protection Platform (TPP)

Testing and development

Perform testing, development, and rapid prototyping in a secure code environment (SCE).
HSM virtualization

Use cryptographic resources more efficiently by segmenting functionality using HSM virtualization and application partitioning.

Robust support

Leverage all major encryption algorithms, standard client libraries, and interfaces (AES, RSA, ECC, PKCS #11, Java, and so on).

Custom scripting

Load, test, and execute custom applications and code within the boundary of the HSM’s Secure Code Environment (SCE).

Why choose the Vectera Plus?

The Vectera Plus combines general-purpose and financial transaction processing. The benefits include reduced up-front capital expenditure, lower overhead costs for maintenance, simplified training, and reduced effort to integrate with 3rd party applications.

Click diagram to enlarge

Financial and General-Purpose Encryption

Deploy enterprise-class security with powerful, extensible HSM solutions for general-purpose and financial industries.

Secure Code Environment

Application developers can run applications within a secure, isolated FIPS 140-2 Level 3-compliant secure code environment (SCE).

HSM Virtualization

You can divide the cryptographic functions of the Excrypt Plus into different logical partitions, which allows it to function as several completely independent HSMs.

Application partitioning

Multiple applications can simultaneously connect and use Excrypt resources securely through key storage table segmentation.
Related: VirtuCrypt cloud

Check out our cloud key management service backed by the Vectera Plus.

See it now

Related: Securing Payments

View Futurex securing payments solutions backed by the Vectera Plus.

See it now

Unlimited use cases

Whether securing databases, protecting emails, or encrypting files in compliance with HIPAA, the Vectera Plus can fill nearly any cryptographic role.

Ease of use

An intuitive GUI makes configuration and key loading easy. Connect the Vectera Plus to the Excrypt Touch for simple point-and-click key loading and device configuration.

Strategic integration

Integrating the Vectera Plus with other Futurex products amplifies speed, availability, and range of functionality to meet any cryptographic requirement.

Algorithmic versatility

The Vectera Plus supports all major cryptographic algorithms. Continuous support for new algorithms ensures your infrastructure remains secure.

Secure code environment (SCE)

An SCE is a powerful tool for organizations to guard their applications, custom code, and API extensions.

Full compliance

Futurex solutions comply with current and emerging regulatory requirements including PCI DSS, FIPS 140-2 Level 3, ANSI X9.24 part 1 and 2 – TR-39, and FCC part 15 – class B

Vectera Plus specifications

Microsoft AD CS

Securely support Microsoft AD CS in creation and management of client Public Key Infrastructure (PKI) certificates by centralizing private key storage in the Vectera Plus hardware security module. For more information on Futurex’s AD CS integration methods, visit our Microsoft AD CS Technology Solutions page, or download our informational brochure.

Oracle Key Vault

Establish a Root-of-Trust (ROT) for Oracle databases in the Vectera Plus HSM and provide critical protection to the wallet password. The Vectera Plus provides high-assurance security for the Transparent Data Encryption process and prevents attempts to recover keys from the Oracle Key Vault server in unauthorized environments without disrupting existing features like High Availability, backup, or restore.

Microsoft SQL Server

Take advantage of the vast set of features and administrative functionality the Vectera Plus HSM provides by using it to offload Transparent Data Encryption (TDE) keys for Microsoft SQL Server. Effectively manage the full key lifecycle, securely generate and issue database encryption keys, and configure specific key management functions like key rotation and aging. Read more about data encryption with SQL Server & HSMs.

VMware vSphere

Securely encrypt virtual machines and associated files by configuring the VMware ESXi hypervisor to store and manage Key Encryption Keys in the Vectera Plus HSM, ensuring enhanced security for data-at-rest and meeting industry compliance requirements.

Java KeyTool

Seamlessly secure keys in the Vectera Plus HSM with Java KeyTool for use in a wide range of general-purpose applications.

Venafi Trust Protection Platform (TPP)

For effective key & certificate lifecycle management, integrate the Vectera Plus HSM with Venafi’s Trust Protection Platform. Visit the Venafi.com Marketplace to download the integration guide and get started.

R3 – Corda Enterprise

Further secure transaction environments by instructing Corda Enterprise nodes to store their Legal Identity Keys in the Vectera Plus HSM. Learn more about configuring your Corda environment with Futurex.

Check Point Security Gateway

Integrate the Vectera Plus HSM into a Check Point Security environment to add an extra layer of security to the network. Configure the Check Point Security Gateway to effectively store cryptographic key pairs and distribute Certificate Authority (CA) certificates.

Hardware features

  • Dual, redundant, hot-swappable power supplies
  • Dual gigabit Ethernet ports
  • Failover link with additional Vectera Plus devices using the Guardian Series 3 for system-wide redundancy
  • Secure Cryptographic Device (SCD) with tamper responsive barrier to protect sensitive data

Operating conditions

  • Power: 100 – 240 VAC 50/60 Hz. 225 Watts
  • Operating temp: -40° to 140°F (-40° to 60°C)
  • Storage temp: -40° to 140°F (-40° to 60°C)
  • Operating humidity: 20% to 80% non-condensing
  • Storage humidity: 5% to 95% non-condensing

Dimensions and weight

  • Weight: 36 lbs (16.33 kg)
  • Width: 19 inches (48.26 cm)
  • Height: 1U – 1.72 inches (4.37 cm)
  • Depth: 19.4 inches (49.38 cm)

Powering the VirtuCrypt cloud

VirtuCrypt key management services are backed by HSMs with hardened, FIPS 140-2 Level 3 validated technology. Whether an organization requires complete infrastructure management or simply more functionality for existing Futurex infrastructure, VirtuCrypt offers a variety of service structures designed to meet security requirements.

VirtuCrypt services

Industry compliance standards

  • FIPS 140-2 Level 3
  • PCI-HSM
  • ANSI X9.24 part 1 and part 2 – TR-39
  • RoHS
  • FCC Part 15- Class B

Key types and protocols

  • 3DES, AES (128-256), DSA (512-4096)
  • RSA (512-8192)
  • ECC (NIST recommended and user-defined)
  • HMAC (MD5, SHA- 1, SHA-256-512)
  • SHA-1
  • SHA-2 (256-512)

Supported cryptographic functionality

  • DES
  • Triple-DES DUKPT
  • Master/Session
  • Tokenization
  • TR-31
  • AKB
  • AES
  • ECC
  • RSA
  • EMV 4.3
  • PKCS #11
  • Java

Want to learn more?

Contact a Solutions Architect today.

Give us a call