Flexible monitoring and management of all HSMs across all locations
CipherTrust from Thales e-Security is a comprehensive HSM monitoring and management platform that enables network operations teams to receive 24 x 7 high visibility on the operational status of all HSMs across all locations without the need for any human intervention. HSMs can now be monitored in a similar way to general IT equipment in data centers. Designed with both security and flexibility in mind, Thales CipherTrust addresses two primary challenges faced by today’s organizations: how to inspect HSMs across multiple data centers in a cost effective and efficient manner and how to know in advance that a potential security, configuration or utilization issue has occurred that may compromise the mission critical infrastructure.
Core status and activities captured by CipherTrust include information on tamper events, individual device configuration and performance utilization keeping users fully informed while helping them proactively respond to potential issues using complementary Thales HSM management tools. Users obtain alerts and warnings directly from CipherTrust via email or via their own Security Information and Event Management (SIEM) tool which is kept up to date every minute by CipherTrust. The result is a dramatic increase in visibility in real-time HSM operation while also providing early warning of potential issues likely to impact the security and operational efficiency of their complete HSM infrastructure.
Thales HSM management tools such as payShield Manager complement CipherTrust by enabling the security teams to manage and make configuration changes to any of the HSMs as a result of information delivered via CipherTrust The first version of CipherTrust is designed for use with payShield HSMs. Future versions will support additional Thales products including the Thales nShield multi-purpose HSM family.
Benefits of CipherTrust
- Provides 24 x 7 visibility on all HSMs
- Identifies performance bottlenecks to improve capacity planning
- Facilitates proactive HSM management responses to potential issues through automatic alerts
- Reduces costs through background remote operation without human intervention
- Works seamlessly with existing HSM hardware and software configurations