Skip to main content
purple hex pattern
illustration of woman and key shape with cloud in background

Take Your Keys to the Cloud

The Cloud Integration Option Pack (CIOP) lets cloud service users generate keys in their own environment and export them for use in the cloud while having confidence that their key has been generated securely using a strong entropy source and the long-term storage of their key is protected by a FIPS-certified HSM. Supported cloud services include Amazon Web Services (AWS), Google Compute Engine, Microsoft Azure and Salesforce.

Beyond Security

Cloud Integration Option Pack Benefits

cloud with rainbow icon

Secure cloud integration

Rely on FIPS 140-2 Level 3 certified HSMs to generate, wrap, and securely deliver your keys to your cloud applications.


Key Availability Control

Control when keys are generated and exported from your on-prem nShield HSMs or nShield as a Service HSMs.

lock icon

Cloud Provider Choice

Get nShield high-assurance key generation and protection with any cloud provider you choose for each key and for your apps.

Tech Specs

nShield Cloud Integration Option Pack is supported on all current nShield HSM models.

Requires nShield Security World Software v12.60 and firmware v12.60 or later for Azure BYOK.

Requires nShield Security World Software v12.40 software for AWS and Google Compute Engine.

Requires nShield Security World Software v12.70 and v12.70 firmware or later for SalesForce use.

Platform Support

This release has been tested for compatibility on a range of platforms including:

  • Microsoft Windows Server 2019 x64 and 2016 x64
  • Microsoft Windows 10 x64 and 7 x64
  • Red Hat Enterprise Linux 7 x64 and AS/ES 6 x86/x64
  • SUSE Enterprise Linux 12 x64 and 11 x64
  • Oracle Enterprise Linux 7.6 x64 and 6.10 x64

What our customers are saying...