Performance ratings and options
To meet the performance needs of your application, nCipher provides a variety of nShield Connect models as shown in the Specifications tab. You can select among the performance models shown, and can also purchase in-field upgrades from lower performance models to higher models.
nShield Connect HSMs ship with three client licenses, each allowing a connection to an IP address. Additional licenses are available for purchase. The maximum number of client licenses supported varies by nShield Connect model as shown in the table below.
|Max # Client Licenses per Connect Model ||XC Base/ 500+ ||XC Mid/ 1500+ ||XC High/ 6000+ |
|Maximum Client Licenses ||10 ||20 ||100 | nShield Web Services Option Pack
The Web Services Option Pack enables the nShield Web Services Crypto API, which provides a simple interface between applications and nShield crypto services. The API gives cloud, data center or on-premises applications access to nShield data protection solutions without the need for client-side integration.
nShield Monitor is a monitoring platform that provides 24x7 visibility into the status of payShield and nShield HSMs. With this solution, security teams can efficiently inspect HSMs and find out immediately if any potential security, configuration or utilization issue may compromise their mission-critical infrastructure.
Remote Administration Kits
nShield Remote Administration lets operators manage distributed nShield HSMs—including adding applications, upgrading firmware, checking status, re-booting and more—from their office locations, reducing travel and saving money. Remote Administration Kits contain the hardware and software needed to set up and use the tool. These kits are available for nShield Solo and nShield Connect HSMs.
CodeSafe is a powerful, secure environment that lets you execute applications within the secure boundaries of nShield HSMs. Sample applications include digital meters, authentication agents, digital signature agents and custom encryption processes. CodeSafe is available with FIPS 140-2 Level 3 certified nShield Solo and nShield Connect HSMs.
CipherTools Developer Toolkit
The CipherTools Developer Toolkit is a set of tutorials, reference documentation, sample programs and additional libraries. With this toolkit, developers can take full advantage of the advanced integration capabilities of nShield HSMs. In addition to offering support for standard APIs, the toolkit enables you to run custom applications with nShield HSMs.
Database Security Option Pack
Databases often contain an organization's most sensitive data. To help customers protect their data, major database vendors have implemented native encryption in their products. The nShield Database Security Option Pack adds support for Microsoft’s Extensible Key Management (EKM) API, helping organizations to better protect the keys that safeguard sensitive data in Microsoft SQL Server.
Security teams that want to strongly authenticate their nShield Connect HSMs clients can use nTokens PCIe cards to do hardware-based host identification and verification.
Elliptic Curve Cryptography (ECC) activation
The ECC activation license enables EC-DH, EC-DSA and EC-MQV to be used on an nShield HSMs.
With the KCDSA activation license, you can use the Korean Certificate-based Digital Signature Algorithm (KCSDA) as well as HAS-160, SEED and ARIA algorithms on an nShield HSMs.
nCipher offers optional slide rails that let users mount nShield Connect in a 19" rack without a shelf. nCipher recommends that customers use these slide rails exclusively as parts from other manufacturers may not be compatible.
Many functions of nShield Connect HSMs can easily be executed using the touch wheel at the front of the unit. nCipher offers an optional USB keyboard for even greater ease of use.
Field replaceable parts
nShield features parts that operators can replace in the field, without downtime. These parts include the following:
- Power supply unit (PSU)
Dual, hot-swap power supplies.
- Replacement fan tray
Redundant, field-replaceable fans.