YubiHSM

Game changing cryptographic protection for servers, applications and computing devices

● Secure key storage and operations on tamper-resistant hardware, with audit logging

● Extensive cryptographic capabilities including hashing, key wrapping, asymmetric signing, decryption, attestation and more

Cryptographic keys stored in software can be copied, and are vulnerable to accidental distribution and remote theft.

Without strict procedures, it is easy for admins or malicious insiders to backup keys to USB flash drives, FTP them, or share to others via a cloud storage service. Additionally, sophisticated attackers can gain admin access or deploy trojan malware that installs on servers, searches for cryptographic keys, and then copies them for sale on dark web sites like Alphabay

The hardware-based YubiHSM 2 enables secure key storage and operations by preventing accidental copying and distribution of keys, and by preventing remote theft of keys stored

Simplified deployment for organizations of all sizes

Ultra portable form factor at an affordable price secures a wide range of long-standing and emerging use cases

Rapid integration with hardware-backed security

A comprehensive cryptographic open source toolbox with support for PKCS#11

Enhanced protection for cryptographic keys

Secure generation, storage and management of digital keys

The world’s smallest HSM secures modern infrastructures

 YubiHSM highlights:

  • Portable nano form factor with low-power usage
  • Secure key storage and crypto operations on a tamper-resistant device
  • Network shareable for use by applications on other servers
  • Interfaces via YubiHSM KSP, PKCS #11 and native libraries
  • Direct USB support beneficial for virtualized environments

Enhanced protection for cryptographic keys

Prevent poor cryptographic key handling by preventing accidental copying and distribution of cryptographic keys. Defend against remote attacks and eliminate remote extraction of private keys by storing cryptographic keys securely on hardware Strong hardware-based security ensures highest bar for protection of sensitive information and data

Rapid integration with hardware-backed security

Open source SDK enables rapid integration Frees developers to easily build support for hardware-based strong security into a wide array of platforms, applications and services Enables organizations to easily make the YubiHSM 2 features accessible through industry standard PKCS#11

Simplified deployment for organizations of all sizes

Ultra-portable and fits easily into a front USB slot on computers and servers Secures modern use cases such as cryptocurrency exchanges, IoT gateways and proxies and cloud services Secures Microsoft Active Directory certificates