| By Maureen O'Gara | Article Rating: |
|
| March 28, 2013 09:30 AM EDT | Reads: |
1,193 |
For its latest trick Amazon Web Services has launched CloudHSM so users - pointedly the enterprise - can up their data security and meet compliance requirements by using dedicated, tamper-resistant Hardware Security Module (HSM) appliances within the AWS cloud.
The widgetry actually comes from SafeNet.
Amazon says the CloudHSM service lets customers securely generate, store and manage the cryptographic keys used for data encryption so they're only accessible by the customer.

It recognizes that some applications and data are subject to rigorous contractual or regulatory mandates for managing cryptographic keys but up till now organizations' only options were to maintain data in on-premises data centers or deploy local HSMs to protect encrypted data in the cloud.
"Unfortunately those options either prevented customers from migrating their most sensitive data to the cloud or significantly slowed application performance."
The way CloudHSM works customers retain full ownership, control and access to keys and sensitive data while Amazon manages the HSM appliances in close proximity to their applications and data for maximum performance, i.e., cutting down on latency.
CloudHSM can support use cases and applications like database encryption, Digital Rights Management (DRM) and Public Key Infrastructure (PKI) including authentication and authorization, document signing and transaction processing.
The appliances are provisioned inside Amazon's Virtual Private Cloud (VPC) with an IP address the user specifies.
The widgetry is supposed to meet international Common Criteria EAL4+ and US government NIST FIPS 140-2 standards for cryptographic modules.
It'll cost at least $5,000 upfront and $1.88 an hour or about $1,373 a month.
It can take a few weeks to provision more than two appliances.
See http://aws.typepad.com/aws/2013/03/aws-cloud-hsm-secure-key-storage-and-cryptographic-operations.html and http://aws.amazon.com/cloudhsm/.
Published March 28, 2013 Reads 1,193
Copyright © 2013 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.
More Stories By Maureen O'Gara
Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara
- Cloud Expo New York Speaker Profile: Jill T. Singer – NRO
- Code 42 Software to Exhibit at Cloud Expo New York
- Cloud Expo New York | CEO Insider: Overcoming Cloud Barriers
- SAML Finds Its Cloud Legs
- Five Steps Toward Achieving Better Compliance with Identity Analytics
- Cloud Expo NY: The Promise of an End-to-End SDN Solution - Can It Be Done?
- The Benefits of Cloud Networking
- Guest Post: Typical CIO Conversation
- Development Testing for Java Applications
- Cloud Expo New York | Danger Ahead: Why File Sync Is NOT Endpoint Backup
- Overview of the OpenStack Cloud
- Java Cryptography | Part 2
- Cloud Expo New York Speaker Profile: Jill T. Singer – NRO
- Code 42 Software to Exhibit at Cloud Expo New York
- ExchangeDefender to Exhibit at Cloud Expo New York
- Symform Brings in New Leadership
- Cloud Expo New York | CEO Insider: Overcoming Cloud Barriers
- Enterprise Mobility, Cloud Computing, BYOD and Unified Communication
- Is Cloud Computing On Course to Becoming a $100 Billion Market?
- Avnet to Design Systems
- SAML Finds Its Cloud Legs
- Big Dollars from Big Data
- SYS-CON.tv Interview: Cloud Surveillance
- Security and the Cloud
- Effective Page Authorization In JavaServer Faces
- The Top 250 Players in the Cloud Computing Ecosystem
- Cloud Expo New York Call for Papers Now Open
- SOA Focus - Web Services Security in Java EE
- IBM Security Report Predicts Mobile/Satellite Attacks in 2005
- Industry Experts Discuss the State of Cloud Computing
- Java Application Security in the Corporate World
- ColdFusion Security Best Practices
- The Top 100 Bloggers on Cloud Computing
- The Cloud Computing Kettle Heats Right Up
- The Next Chapter in the Virtualization Story Begins
- Cloud Expo 2011 East To Attract 10,000 Delegates and 200 Exhibitors

























