Protect Your Data On the Cloud and Meet Compliance Requirements
CloudHSM is built upon Hardware Security Modules (HSMs) validated by either China's State Cryptography Administration (SCA) or NIST (FIPS 140-3). CloudHSM provides comprehensive cloud-based cryptographic services, enabling you to manage your keys securely and reliably. You can leverage a wide range of cryptographic algorithms to perform robust encryption and decryption operations on your business data in the cloud.
Compliance
Uses HSMs that are FIPS 140-2 Level 3 validated to meet compliance requirements.
Authentication and Authorization
Separation of duties based on role-based access control. Alibaba Cloud monitors the health and network availability of the HSM hardware, and you fully control the HSMs and the generation and use of your encryption keys.
Elastic Scaling
Allows you to add or remove HSMs in the Alibaba Cloud Management Console based on your business requirements. You can also adjust configurations and specifications to meet specific encryption and decryption requirements.
Product Selection
| Aspect | Virtual HSM | Dedicated HSM |
|---|---|---|
| Positioning |
Provides tenant-isolated virtual HSM instances based on cloud HSMs certified by China's SCA or NIST (FIPS 140-2). |
Provides dedicated physical HSMs certified by professional and authoritative institutions. |
| Performance |
Offers cryptographic performance and key capacity designed to meet the needs of general business applications. |
Supports high-performance models for cryptographic computation, meeting the business requirements of large-scale application systems. |
| Use Cases |
· Cryptographic evaluation for small- and medium-sized enterprises. |
· For enterprises expanding globally that require internationally certified HSMs. |
How It Works
Cloud Hardware Security Module (HSM) is a hosted service. You can deploy this service on Alibaba Cloud in an easy and cost-effective way. Alibaba Cloud manages and maintains HSMs.
Scenarios
Encryption of Common Sensitive Data
Sensitive Data Encryption
Encrypts private identity information of users for storage.
Benefits
Data Breach Prevention
Prevents data breach risks caused by attacks.
Data Tampering Prevention
Prevents data tampering or leak risks caused by unauthorized access from internal users.
Encryption for Financial Payment
Meets Strict Compliance Requirements in Payment Scenarios
Ensures the integrity and confidentiality of payment data during transmission and storage, and also ensures the non-repudiation during the identity authentication and payment processes.
Benefits
Compliance
Meets compliance requirements in financial payment scenarios.
Business Security
Ensures the security of financial payment business.
SSL Offloading
Meets SSL Offloading Requirements
Accelerates SSL processing, ensures private key security for SSL certificates, and improves server security.
Benefits
Private Key Security
Prevents the breach of private keys for SSL certificates caused by attacks.
Prevention of high CPU utilization caused by SSL handshakes
Uses powerful HSM-based cryptographic operations to accelerate SSL processing and improve server performance.
Cloud Hardware Security Module (HSM) Pricing
Cloud Hardware Security Module (HSM) supports the subscription billing method. You can purchase instances based on your business requirements. To ensure the security of keys, we recommend that you subscribe to instances in primary/secondary mode on a monthly basis.
| Region | Unit Price of HSM (USD/Month) | Unit Price of HSM (USD/Year) |
| Singapore (Singapore) | 1,300 | 14,300 |
|---|---|---|
| Malaysia (Kuala Lumpur) | 1,300 | 14,300 |
| China (Hong Kong) | 1,500 | 16,500 |
Please contact us for other region deloyment enquiry.
Upgraded Support For You
1 on 1 Presale Consultation, 24/7 Technical Support, Faster Response, and More Free Tickets.
1 on 1 Presale Consultation
24/7 Technical Support
6 Free Tickets per Quarter
