Stack Overflow
Stack Overflow

Questions tagged [hardware-security-module]

60 questions
0
votes
1 answer

Establish SSL/TLS Connection using Certificate present in Thales Luna HSM

I am trying to setup a Netty Server with HTTPS enabled. In order to establish the SSL/TLS connections, I need to fetch the certificiate from Safenet Luna Network HSM and pass that Cert to Netty's SSL Context. I have generated a keypair in the Luna…
Akash Maharana
  • 1
  • 1
0
votes
1 answer

Is there any specific authorization that is required for NG decrypting command on Thales HSM 8000 module even after HSM module is authorized?

Please let me know if there is any solution in case the below mentioned error is received on HSM 8000. The HSM is already authorized on which the command is being tried. The command is taken from the manual of HSM 9000; NG command for decrypting the…
Muhammad Qaddes Asim Farooqui
  • 1
  • 1
0
votes
0 answers

3DES keys in AWS Cloud HSM

Im new to AWS HSM (but worked with many others) is it possible to load 3DES key to the AWS Cloud HSM? I saw you can generate but is it possible if already have my key thanks
Liran Ben Haim
  • 436
  • 3
  • 10
0
votes
0 answers

I use CopyWithPrivateKey I get error 'The provided key does not match the public key for this certificate. Parameter name: privateKey'

X509Certificate2 _HsmserverCertificate = null; string pkcs11LibraryPath = "C:\\Program Files (x86)\\nCipher\\nfast\\toolkits\\pkcs11\\cknfast-64.dll"; Pkcs11InteropFactories factories = new Pkcs11InteropFactories(); using (IPkcs11Library…
TBT
  • 55
  • 1
  • 1
  • 4
0
votes
0 answers

Read Certificate from hsm and bind its private key to it and save in X509Store

I have a nshield HSM, my certificate and private key and public key are stored in it. When I read certificate from my HSM there isn't private key in it .I need this certificate to use in "AuthenticateAsServer". Also privateKey is not extractable…
TBT
  • 55
  • 1
  • 1
  • 4
0
votes
0 answers

Migrating to KeyBlock LMK

I am trying to migrate a key from a variant LMK to a keyblock one.I am using a utility that uses the command BW for this purpose , The commannd is failing from HSM side with error code A1 = Incompatible LMK…
Bassem Abd Elmaksoud
  • 1
  • 1
  • 4
0
votes
0 answers

How to Stored Data inside Hardware keystore backed JKS and retrive it on requirement

We are Currently working on end to end encryptions which are both forward and backward secured. Currently we are using BountyCastle to create 10 RSA keys dynamically but how can we store these keys inside HSM provided by android devices
Ayyaz Talat
  • 1
  • 2
0
votes
2 answers

How do I change the Crypto Service Provider using Windows AD CS (and C#) to use a HSM Vendor

First, my apologies as I know very little about certificates and cryptography. I was thrown into a project where I need to create a CSR but have a HSM Device create and store the private key. My intension was to use Windows AD CS and change the…
Bob P
  • 65
  • 5
0
votes
0 answers

Corrupted signed file generated by AWS HSM

I am trying to sign a pdf file in AWS CloudHSM using the command described here https://docs.aws.amazon.com/cloudhsm/latest/userguide/key_mgmt_util-sign.html. I am running following command sign -f sample.pdf -k 7 -m 1 -out signedFile.pdf where…
user12634860
0
votes
1 answer

SHAREDLIBRARYNAME Utimaco is not referring When I start signserver with docker

I start signserver with docker: docker run -it --rm --name signserver \ -p 80:8080 -p 443:8443 \ -e CRYPTO_SERVER_IP=**** \ -v /ca-cert.pem:/mnt/external/secrets/tls/cas/ManagementCA.crt \ signserver:1.0 Now, i need connect signserver to PKCS11 on…
junhu
  • 5
  • 2
0
votes
1 answer

Configure Safenet Luna EFT HSM to allow ISO-0 to ISO-1 pin translation

As the title states I need to be able to convert an ISO-0 formatted encrypted pin block to ISO-1 format using a Safenet(Gemalto) Luna EFT. I am connecting over TCP/IP and sending commands formatted per programmer's guide. I am using PIN-TRANSLATE-2…
Alwyn Schoeman
  • 467
  • 7
  • 13
0
votes
3 answers

Hardware security module

Does anyone know aobut HSMs supporting C#? I googled and got 3 vendors. But there's no information given on there sites about whether they support C# and I would like to know the prices also. The three HSM vendors: AEP Keyper Safenet Luna Thales…
user690932
  • 419
  • 2
  • 7
  • 19
0
votes
1 answer

SafeNet ProtectServer External 2 HSM

I could not find the maximum number of slots that we can create on SafeNet ProtectServer External 2 hardware security module If anyone know that please help!
smart trust
  • 1
  • 1
0
votes
1 answer

Protocol and data format to get connected with HSM boards

Folks - How does an application connect with HSM(Hardware security Module) boards? What is the protocol they use and what would be the data formats for interaction? The reason for asking protocol is that I may have the application running on a…
techtantric
  • 1
  • 3
-1
votes
1 answer

Manage of CVK Key in KeyBlock Format

I use a Thales PayShield 10K with a LMK KeyBlock 3DES. I have to send a CVK Key to a Scheme for the valorization of CVV2 value. Now, in my envorinment i generated a CVK Key with "Key Usage"= C0 and encrypted it under a ZMK (Key scheme "s"). About…
MaXbeMan
  • 21
  • 1
  • 4
1 2 3
4