nShield Cloud Integration Option Pack

With Cloud Integration Option Pack you can use your nShield HSMs to generate, store, and manage the keys you count on to secure your sensitive cloud-hosted applications

nShield Cloud Integration Option Pack

The Cloud Integration Option Pack (CIOP) provides users of cloud services the ability to generate keys in their own environment and export them for use in the cloud while having confidence that:

  • Their key has been generated securely using a strong entropy source.
  • The long term storage of their key is protected by a FIPS-certified HSM.

The following cloud services are supported:

  • Amazon Web Services (AWS)
  • Google Cloud Platform (GCP)
Use FIPS 140-2 certified nShield HSMS to manage your keys

When sensitive data resides in your cloud-hosted applications, you can rely on your FIPS 140-2 Level 3 certified nShield HSMs to generate and wrap your keys, and securely deliver them to your cloud applications.

Control the availability of your keys

You exclusively control your nShield HSMs, whether on your own premises or in the nShield as a Service environment. Therefore, you decide when keys are generated and exported. By controlling the master copy, you also control when and whether further exports to your cloud provider occur.

Choose your cloud provider

With CIOP, you decide which cloud provider to use for each key. This gives you the flexibility to choose the right cloud from your on-premises or as a service nShield environments for your different applications, while benefiting from nShield high-assurance key generation and protection.

CIOP supports the following operating systems using an nShield Solo, Connect or Edge HSM with V11.72.03 Security World software onwards:

  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 7 x86/x64
  • Red Hat Enterprise Linux 7 x64
  • Red Hat Enterprise Linux AS/ES 6 x86/x64
  • SUSE Enterprise Linux 12 x64
  • SUSE Enterprise Linux 11 x64

Prior to installing the Cloud Integration Option Pack, ensure that nShield Security World software has been installed.

Data Sheet: nShield Connect HSMs

nShield Connect HSMs are certified, networked appliances that deliver cryptographic key services to applications distributed across servers and virtual machines.


Data Sheet: nShield Solo HSMs

nShield Solo HSMs are certified PCI-e card-based solutions that deliver cryptographic key services to applications hosted on individual servers and appliances.


Datasheet : nShield as a Service

Subscription-based access to dedicated nShield Connect HSMs, enabling cloud-centric strategies while maintaining the strict security controls required for business-critical applications.


White Paper : The nCipher Security World Architecture

The nCipher Security World architecture supports a specialized key management framework that spans the entire nShield family of general purpose hardware security modules (HSMs). Whether deploying high performance, shareable, network-attached HSMs appliances, host-embedded HSMs cards or USB-attached portable HSMs, the Security World architecture provides a unified administrator and user experience and guaranteed interoperability whether the customer deploys one or hundreds of devices.

Want to be part of our team? Explore
Get in contact with a specialist Contact Us