Securely manage TLS/SSL keys, certificates, and encryption deployments for web applications and cloud services
Products and services from Entrust enable deployment of high assurance, high-performance SSL and TLS encryption to protect business and customer data, while delivering the efficiency that critical web applications require from SSL solutions.
Protecting SSL/TLS Master Keys
The security of SSL/TLS encryption deployments depends on the security of the associated master keys. Organizations that require a high level of assurance protect their SSL/TLS encryption keys in a hardware security module (HSM).
Securing the Entire SSL/TLS Connection
Some sensitive applications require enhanced security, where the SSL/TLS software stack and associated logic must be protected within a high assurance secure execution environment.
Entrust nShield HSMs
For applications that require higher levels of security, Entrust nShield™ hardware security modules (HSMs) deliver FIPS-certified protection for your SSL/TLS encryption master keys. Whether you are using an embedded nShield Solo or a stand-alone nShield Connect HSM, Entrust nShield HSMs help you meet your needs for high assurance security and compliance. Entrust nShield HSMs safeguard and manage large numbers of critical SSL/TLS within a dedicated, hardened device, ensuring that keys are never exposed to unauthorized entities. nShield HSMs also feature the unique CodeSafe capability, which enables sensitive SSL/TLS code and application logic to execute within the secure boundary of the HSM.
Entrust nShield HSM Benefits
- Easily deployed and independently certified security for high assurance centralized SSL/TLS key management.
- Embedded and stand-alone form factors and performance ratings suit various deployment scenarios including virtual environments.
- Robust FIPS 140-2 Level 3 certified platform enforces key management policies and facilitates compliance auditing.
- Entrust nShield HSMs deliver high performance, availability, scalability, and trust for today’s application infrastructures.
The Entrust nShield CodeSafe developer toolkit provides the unique capability to move sensitive applications within the protected perimeter of a FIPS 140-2 Level 3 certified nShield hardware security module (HSM). Business applications running on host servers are increasingly vulnerable to a variety of attacks and advanced persistent threats (APTs) that can compromise critical operations and lead to massive costs and disruption of services. While sensitive applications often employ cryptographic mechanisms to protect sensitive data, these applications can still be the target of attack by APTs and vulnerable to manipulation unless protected within a hardened environment.
Solution Brief: Enhanced Security of Application Delivery Controllers
Application delivery controllers (ADCs) optimize web application performance by providing load balancing and management of sensitive traffic. Entrust partners with ADC providers to deploy high-security TLS/SSL systems that enable customers to deliver secure connectivity while meeting operational demands.