HSM Virtualization

What is HSM Virtualization? 

HSM Virtualization is a process by which a single HSM is partitioned into logically separated environments, each functioning as a completely independent HSM. The feature, available for the  Vectera Series and Excrypt SSP Enterprise v.2 hardware security modules, serves various purposes. These include zero-downtime deployment of firmware updates, assignment of stronger security policies for mission-critical applications, proof-of-concept testing for new use cases, and a multitude of other scenarios.

When it comes to accessing their virtual HSMs, users have options. Some may choose to use the web portal or API connected to the host HSM. Others with larger cryptographic infrastructures may lean toward using the  Guardian9000 centralized management platform or the Securus remote access tablet, both of which allow administrators to remotely manage their virtual HSMs in the same manner they would a physical HSM. Furthermore, VirtuCrypt customers also have the option of accessing their virtual HSMs through the VirtuCrypt Intelligence Portal (VIP) Dashboard. 

Virtual Customization

Inside each individual Virtual HSM, a variety of settings and parameters can be customized, all the while remaining independent from the other virtual HSMs on the device. Some examples of the different customizations options are:

• Firmware versions
• Major keys
• Key and log storage space
• Processing power and application priority levels
• Secure Code Environment custom applications and command extensions
• IP addresses and network settings
• Configuration parameters
• User permissions and security settings