ProtectServer Orange - Hardware Security Module
- PCI adapter based Hardware Security Module - HSM
- Performs symmetric and asymmetric key cryptography
- Frees servers from time-consuming cryptographic functions
- Secure tamper protected key storage
ProtectServer Orange is a FIPS 140-1 level 3 certified PCI adapter based HSM that you can install in server systems as a
cryptographic subsystem to perform symmetric and asymmetric cryptography. All cryptographic operations that would otherwise
be performed on the insecure server are processed within the physically secure HSM - ensuring sensitive keys are always
protected from compromise.
ProtectServer Orange is typically employed to provide cryptographic
services such as user and data authentication, message integrity,
high-speed encryption, secure key storage and key management for
e-Commerce, PKI applications and financial EFT transactions.
ProtectServer Orange delivers excellence in four critical transaction security fields;
Security, Broad Performance Availability,
Extensive API support, and Easy Management.
Security
ProtectServer Orange provides FIPS 140 certified physical and logical protection to cryptographic keys preventing unauthorised access to highly sensitive key information. Tamper resistant secure casing, battery backed secure key storage, automatic cryptographic key erasure upon tamper detection, True Random Number Generator, plus smart card cryptographic key transfer, ensure the ultimate level of secrecy/integrity of keys and sensitive data.
Broad availability of Performance Levels
Connected internally to the host computer through a PCI interface, ProtectServer Orange eases the host systems cryptographic
processing load and frees it to respond to more requests and perform other critical application processing.
With regard to the General Purpose APIs and EFT Command Sets available from SafeNet Inc., a number of performance
configurations are available:
- General Purpose Applications: ProtectToolkit C/J/M/OpenSSL integration
- PL50 ~ 50 RSA signatures (1024-bit) operations/sec
- PL220 ~ 220 RSA signatures (1024-bit) operations/sec
- PL450 ~ 450 RSA signatures (1024-bit) operations/sec
- EFT: ProtectToolkit EFT APIs
- PL25 ~ 25 Visa PVV verifications/sec
Extensive APIs
SafeNet delivers one of the most comprehensive range of cryptographic API’s in the market to enable users and
developers to facilitate seamless integration of cryptography and HSMs into a large array of pre-integrated third party
solutions, or custom applications.
This includes the broadest suite of PKCS#11 function sets available on the market, a Java JCA/JCE and Microsoft CryptoAPI
provider implementation, EFT command sets, plus seamless integration with OpenSSL via a PKCS#11-based engine implementation.
In addition, the Customisation Software Development Kit (ProtectProcessing), incorporating convenient software emulation
capabilities, enables the development, download and storing of custom specific functionality modules (FMs) inside the secure
boundary of the HSM.
Easy Management
ProtectServer Orange provides secure, easy to perform local and remote management plus infield servicing. Easy interaction and key management are achieved using a GUI based interface, plus remote network access to the HSM facilitates increased administration convenience, plus reduced cost and time. Smart cards provide the highest security and administrative convenience for secure backup, recovery and transfer of cryptographic keys and upgrades can be cost efficiently performed at the in-field location avoiding the need to open or disassemble the unit, or the cost to return the product to the service location
