vSEC:CMS 6.10 Introduces HSM Integration Yubico YubiHSM

Date: 2024-07-22
Author: Versasec

Yubico YubiHSM

Versasec credential management system, vSEC:CMS, version 6.10, introduced the latest HSM integration with Yubico’s YubiHSM. Enterprises looking to protect the vSEC:CMS Master Keys with external hardware can now choose the YubiHSM.

Benefits of Hardware Security Modules

To begin, Hardware Security Modules (HSMs) are physical devices that enhance the security of sensitive data by ensuring cryptographic keys are stored in a tamper-proof hardware environment resistant to physical and logical attacks.

Compared to software key stores, keys are stored within the HSM and never leave the hardware, providing an additional layer of security. HSMs often comply with stringent security standards (e.g., FIPS 140-2/3, Common Criteria), which can be a requirement for certain regulatory environments.

Why integrate an HSM with vSEC:CMS?

In brief, HSMs are often used in Public Key Infrastructure (PKI) systems to generate, manage, and protect cryptographic keys. As a result, HSMs provide a secure environment for key production, storage, and access control.

Moreover, when the vSEC:CMS master keys are stored securely within the HSM, they cannot be extracted or misused. These master keys are used when performing administration key operations with the vSEC:CMS such as registering a credential or when performing PIN unblock operations.

Technology Partner Integrations

To finalize, we’re excited to continue our partnership with technology leaders in the IAM industry. Our longstanding relationship with Yubico provides a seamless connection with YubiHSM. To see the list of our YubiKey supported credentials, visit: https://versasec.com/products/supported-credentials/.

Video Demo

Naturally, we’ve created a quick video tutorial to walk through establishing the connection that goes through:

  1. First, add an HSM connection from vSEC:CMS Admin application
  2. Then, create a new Service Key Store,
  3. Next, migrate keys to YubiHSM,
  4. Follow with generating a new master key,
  5. And, check the master key in the Repository.
  6. To end, issue a YubiKey using the YubiHSM master key to diversify the Yubikey PIV management key

“When it comes to hardware security modules, Versasec is a great partner for YubiHSM. They offer seamless integration and provide customers with the strongest possible level of security for storing cryptographic secrets cost-effectively, with Yubico’s offering one of the most cost effective HSMs in the industry.” says Jeff Frederick Sr. Director, Solutions Engineering at Yubico.

Download an evaluation version of the latest vSEC:CMS release.
Schedule a demo at your earliest convenience.

vSEC:CMS

Our product suite provides all the software tools to administrate and manage credentials in a secure and convenient way.

Start here

Free Product Trial

Versasec provides enabling IT security products centered on the usage of security devices such as smart cards. Our solutions enable customers to securely authenticate, issue and manage user credentials more cost effectively. Get a free product trial.

Job Openings

We are always looking for new exceptional persons to join our team! Find out more about our job openings.

Share this article