Hardened Security for General Purpose Applications
The Vectera Plus combines the best of both general-purpose and financial purpose data processing. The device brings FIPS 140-2 Level 3-validated technology to general purpose cryptography, ensuring security at a level reserved for the most sensitive data. The benefits of this multi-functional hardware are manifold: reduced up-front capital expenditure, lower overhead costs for maintenance, simplicity of training, and reduced time expenditures.
- Grow your data security infrastructure as your network grows
- Increases the overall speed and functionality of your HSM network
Ease of Use
- An intuitive, robust, and versatile GUI interface makes configuration and key loading simple and easy to understand
- Compatible with all major host application software products sold around the world for seamless integration
- Simple point-and-click key loading and device configuration using the Futurex Excrypt Touch
Suited for General Purpose and Financial Industries
The vendors in the market for hardware security modules typically separate financial units and general purpose units. Futurex sees no reason to follow this precedent because cryptographic algorithms are applicable to numerous industries and numerous devices. The Vectera Plus combines industry-leading speeds and the world's most advanced encryption algorithms to be labeled a Secure Cryptographic Device (SCD). From securing databases to protecting emails or encrypting sensitive medical files in compliance with HIPAA, the Vectera Plus fills incredible varied roles across innumerable industries.
Secure Code Environment
A unique feature of the Vectera Plus HSM is its secure application boundary dubbed the Secure Code Environment. It's a powerful, versatile, and extensible tool for organizations wishing to extend the command set to support proprietary or environment-specific functionality with custom code, applications, and API extensions. Organizations can incorporate the Excrypt API to leverage the built-in cryptographic functionality of the Vectera Plus HSM. The Secure Code Environment guards their own applications, affording an easy method through which organizations can increase the return on investment for their hardware security module infrastructure.
Futurex hardware security modules are built to provide top tier enterprise-class security for a wide range of use cases and applications. The Vectera Plus HSM is compatible with most general-purpose applications critical to data security operations and secure data transfer. Through the Futurex Portal, organizations can access the tools, libraries, and integration guides necessary to integrate with these applications quickly and easily.
Oracle Key Vault
Establish a Root-of-Trust (ROT) for Oracle databases in the Vectera Plus HSM and provide critical protection to the wallet password. The Vectera Plus provides high-assurance security for the Transparent Data Encryption process and prevents attempts to recover keys from the Oracle Key Vault server in unauthorized environments without disrupting existing features like High Availability (HA), backup, or restore.
Check Point Security Gateway
Integrate the Vectera Plus HSM into a Check Point Security environment to add an extra layer of security to the network. Configure the Check Point Security Gateway to effectively store cryptographic key pairs and distribute Certificate Authority (CA) certificates.
Securely encrypt virtual machines and associated files by configuring the VMware ESXi hypervisor to store and manage Key Encryption Keys in the Vectera Plus HSM, ensuring enhanced security for data-at-rest and meeting industry compliance requirements.
Seamlessly secure keys in the Vectera Plus HSM with Java KeyTool for use in a wide range of general-purpose applications.
R3 - Corda Enterprise
Further secure transaction environments by instructing Corda Enterprise nodes to store their Legal Identity Keys in the Vectera Plus HSM. Learn more about configuring your Corda environment with Futurex.
Microsoft Active Directory Certificate Services (AD CS)
Securely support Microsoft AD CS in creation and management of client Public Key Infrastructure (PKI) certificates by centralizing private key storage in the Vectera Plus hardware security module. For more information on Futurex’s AD CS integration methods, visit our Microsoft AD CS Technology Solutions page, or download our informational brochure.
Microsoft Active Directory Rights Management Services
When managing critical file & document access permissions with Active Directory Rights Management Services (AD RMS), meet FIPS 140-2 compliance requirements by utilizing the Vectera Plus HSM for cryptographic key management. Learn more about using AD RMS with hardware security modules.
Microsoft Active Directory Federation Services (AD FS)
Harden single sign-on security (SSO) and further secure your enterprise infrastructure, federation partner organizations, or cloud footprint by storing AD FS keys in the Vectera Plus hardware security module. View Microsoft AD FS integration guide for deployment details.
Microsoft SQL Server
Take advantage of the vast set of features and administrative functionality the Vectera Plus HSM provides by using it to offload Transparent Data Encryption (TDE) keys for Microsoft SQL Server. Effectively manage the full key lifecycle, securely generate and issue database encryption keys, and configure specific key management functions like key rotation and aging. Read more about data encryption with SQL Server & HSMs.
Venafi Trust Protection Platform (TPP)
For effective key & certificate lifecycle management, integrate the Vectera Plus HSM with Venafi’s Trust Protection Platform. Visit the Venafi.com Marketplace to download the integration guide and get started.
Devices and Height
- Vectera Plus: 1U
Industry Compliance Standards Met
- FIPS 140-2 Level 3
- ANSI X9.24 part 1 and part 2 – TR-39
- FCC Part 15- Class B
- Power requirements: 100 - 240 VAC 50/60 Hz. 225 Watts
- Operating temperature: 50° to 95°F (10° to 35°C)
- Storage temperature: -4° to 149°F (-20° to 65°C)
- Operating relative humidity: 20% to 80%
- Storage relative humidity: 5% to 95%
Hardware Redundancy and Disaster Recovery
- Dual, redundant, hot-swappable power supplies
- Dual gigabit Ethernet ports
- Failover link with additional Vectera Plus devices using the Guardian Series 3 for system-wide redundancy
Supported Cryptographic Functionality
- Triple-DES DUKPT
- EMV 4.3
- PKCS #11
Supported Key Types and Protocols
- 3DES, AES (128-256), DSA (512-4096)
- RSA (512-8192)
- ECC (NIST recommended and user-defined)
- HMAC (MD5, SHA- 1, SHA-256-512)
- SHA-2 (256-512)