Stack Overflow
Stack Overflow

Questions tagged [hsm]

Hardware Security Modules are devices designed to protect cryptographic key material and accelerate certain operations.

Hardware Security Modules are computer devices that provide a protected environment in which cryptographic keys can be generated, used and (in some cases) stored. Without using an HSM, cryptographic keys are exposed in RAM during their generation and use.

Some HSMs also contain special-purpose chips that offer acceleration for particular cryptographic operations, such as RSA signature generation or elliptic curve operations.

412 questions
0
votes
0 answers

How to submit a CSR to Windows CA for signing from C#?

My scenario: I have an EC2 instance running Windows Server 2016 DataCenter OS in it. This EC2 instance is configured to work as CA and IIS server (I am testing cloudhsm so it is okay for me to have multiple services in the same server). My CA is…
vpv
  • 920
  • 2
  • 20
  • 46
0
votes
1 answer

How to fix "CCertRequest::Submit: The RPC server is unavailable. 0x800706ba" error?

Scenario: I am learning AWS CloudHSM. So far, I have created an EC2 instance with Windows Server 2019 Datacenter as OS created a certification authority (root CA) on this server with Dintinguised Name "CN=myservername-CA1"…
vpv
  • 920
  • 2
  • 20
  • 46
0
votes
3 answers

PIN block translation failure

we have in our case an ATM switch that is connected to Payment network (e.g, VISA) on one hand and Issuer on another hand. while firing a transaction(transaction flow :acquirer bank-->Payment network-->ATM switch-->Issuer),the transaction failed…
Bassem Abd Elmaksoud
  • 1
  • 1
  • 4
0
votes
1 answer

Extracting secret key out does't work in JBOSS EAP 7.1 from Luna Safenet HSM

I have set the private key in HSM keystore, using ECDH key agreement I am trying to get the secret key out from JBOSS application server. The below code is working when I ran as standalone application but the same doesn't work in JBOSS EAP 7.1. here…
San
  • 1
  • 1
0
votes
1 answer

HSM PIN Command for Customer selected PIN

I am trying to build a card pin solution whereby customers are able to logon to a web portal and set their own card PIN and afterwards generate a PVV value of the new PIN. The list of commands I trying to use are JG\JH (Translate PIN) DG\DH…
YFRANCIS
  • 1
  • 2
0
votes
1 answer

SafeNet ProtectServer External 2 HSM

I could not find the maximum number of slots that we can create on SafeNet ProtectServer External 2 hardware security module If anyone know that please help!
smart trust
  • 1
  • 1
0
votes
1 answer

Can I sign Hardware Lab Kit Package (HLKX) with a Self Signed Cert

To test my HSM, I created a self signed cert with its keys stored in the HSM. When I execute signtool, it find the cert and signs the binary. When I attempt to sign an Hardware Lab Kit package (HLKX file) with the cert using the store it finds no…
Eva Brigid
  • 123
  • 14
0
votes
1 answer

USB token PKI decryption

I'm looking for USB token solution for asymmetrical decryption purpose. The server has encrypted sensitive data with periodically rotating data encryption key (DEK), which is stored alongside with the encrypted data, encrypted itself with…
Tuomas Toivonen
  • 21,690
  • 47
  • 129
  • 225
0
votes
1 answer

AWS KMS and on Premises HSM

Can anyone define the process flow for data encrypt and decrypt for me running a local HSM in the data centre connected via IPSEC tunnel to AWS. Using our Local HSM for these actions. What is the process flow for encrypting and decrypting objects,…
PaddyRank
  • 1
  • 1
0
votes
1 answer

Exception while connecting to HSM using SunPKCS11

I'm using SunPKCS11 to connect to a HSM device. I have some unit tests which run perfectly(actually they do some signing and verification), however, when I deploy the application into tomcat or jetty I get this exception(this exception is thrown…
ali4j
  • 522
  • 3
  • 15
0
votes
0 answers

Adobe AATL certificate is showing on my and another colleague's machine but not on other machines

I am currently working on digitally signing PDF files using Adobe AATL and it seems that my code for it is not working. I was provided by the AATL provider with a Certificate Chain and Certificate. When I try (using Java Code) to digitally sign a…
Allan Chua
  • 9,305
  • 9
  • 41
  • 61
0
votes
2 answers

CreateObject PKCS#11 fail

I tried to comment on this link https://stackoverflow.com/a/39798597/448266, but could not due to the reputation #. I have tried the sample and run well, but when I changed to arbitrary value it returns exception Message:…
Bondhan Novandy
  • 362
  • 1
  • 4
  • 16
0
votes
1 answer

Pkcs11Exception: Method C_GetSessionInfo returned CKR_CRYPTOKI_NOT_INITIALIZED

We are using Thales nShield HSM for storing Private keys and the corresponding public key is stored in the Certificate store. We have written the logic as below: Search for a valid slot and open a session for that on the first call and it can…
Kumar
  • 63
  • 1
  • 10
0
votes
1 answer

How to HSM device store and protect private key?

I am studing about HSM device but i dont know this device protects and saves the Key? HSM saves key outside or inside? If inside, How many key the HSM can protect? Thanks.
Phong Nguyenqui
  • 61
  • 1
  • 3
0
votes
0 answers

Ejbca & Hardware Security Module

I'm using Ejbca as Certification Authority management system. The private keys and public keys store in HSM furthermore a self-signed certificate stores in hsm while storing the private key and public key I want to know how to store the CA…
mohammad pakivand
  • 381
  • 5
  • 15
1 2 3
27 28