The BlackVault HSM.RAS is an affordable commercial grade model with an integrated Smart Card reader that utilizes an extruded aluminum case that has flanged end plates for securely mounting: within a 1U shelf/locking drawer; on DIN rail or wall mount.
Its powerful features include a compact form factor, smart card reader, tamper reactive silicon die shield, long battery life, networked and off-line operation with Ethernet and USB ports, and much more.
BlackVault HSM.RAS utilizes an intuitive iconic graphical user interface. A structured menu system facilitates straight forward configuration via remote management. The user interface presents Crypto Officers with a sequence of dialog boxes that lead through a series of well-defined steps to initiate the HSM and provision cards and keys.
Trusted Path Authentication
The integrated smart card reader facilitates two-factor authentication, and advanced “M of N” Quorum approval. This ensures that no single individual can authorize administrative or operational actions.
Real Time Audits
Constantly updated configuration and operation information provide Security Administrators with the data to discover anomalous activity or failure of critical functions. Audit information can be sent to a trusted entity and is protected to prevent unauthorized access, modification, or deletion.
Military Grade Tamper Reactive
BlackVaultHSM.RAS cryptographic boundary is within the silicon of its secure CPU. This silicon die shield has dynamic fault detection with real-time environmental and tamper detection circuitry. It also avoids inadvertent tamper, making the BlackVaultHSM.RAS safe to transport. When a tamper event is detected, the Cryptographic keys are zeroized (deleted).
Ideal for Many Applications
The BlackVault HSM.RAS is an independently certified standards based network attached hsm (hardware security module) that performs key management and cryptographic operations for enterprises, certificate authorities, government, and a growing list of organizations requiring strong security for PKI, digital certificates, code signing, document signing, cryptographic key storage, data encryption, key generation and regulatory compliance in cloud companion, networked and off-line (air-gap) operations.