IBM HSM Products

What is an HSM? An HSM is a Hardware Security Module, a general-purpose computing environment that withstands both physical and logical attacks and has special hardware to perform cryptographic operations and protect keys. The HSM is accessed from a host computer system using a carefully-designed set of API functions. The API functions may be generic, or they may be designed to meet the special requirements of particular industries such as banking and finance.

The device must run the programs that it is supposed to run, with confidence that those programs have not been modified. You must be able to (remotely) distinguish between the real device and application, and a clever impersonator.

The HSM must remain secure even if adversaries carry out destructive analysis of one or more devices. Many servers operate in distributed environments where it is difficult or impossible to provide complete physical security for sensitive processing. In some applications, the motivated adversary is the end user. You need a device that you can trust even though you cannot control its environment.


Card Pictogram
Card Pictogram

Cryptography is an essential tool in secure processing. When your application must communicate with other distributed elements, or assert or ascertain the validity of data that it is processing, you will find cryptography an essential tool. IBM HSMs will fit your needs for secure cryptographic hardware.

IBM Systems currently offers three high-end, high-performance hardware security modules (HSMs) which provide a flexible solution suitable for high-security processing and cryptographic operations to address your cryptographic needs. The latest generation and fastest of the IBM cryptographic coprocessor family of PCle cards with a multi-chip embedded module is the IBM PCle Cryptographic Coprocessor Version 3 (PCleCC3). Its predecessors are the PCle Cryptographic Coprocessor Version 2 (PCleCC2) and IBM PCle Cryptographic Coprocessor Version 1 (PCleCC).