CloudHSM

CloudHSM is required to achieve compliance with certain security standards such as FIPS 140-2 Level 3

  • AWS CloudHSM is a cloud-based hardware security module (HSM)

  • Generate and use your own encryption keys on the AWS Cloud

  • Manage your own encryption keys using FIPS 140-2 Level 3 validated HSMs

  • CloudHSM runs in your VPC

  • FIPS 140-2 level 3 validated HSMs

  • You can configure AWS Key Management Service (KMS) to use your AWS

  • CloudHSM cluster as a custom key store rather than the default KMS key store

  • Managed service and automatically scales

  • Retain control of your encryption keys - you control access (and AWS has no visibility of your encryption keys)

Last updated