Hardware Security Module (HSM)

Basefarm’s Hardware Security Model service ensures the highest level of physical security and is now available to add to your most critical applications. We make sure that you receive the optimal solution to protect your most valuable assets.

Hard facts about Basefarm HSM service

Secure hardware – tamper proof hardware in Basefarm’s data centers
Guaranteed availability – fully redundant service
Cheat protected – three key Ceremony for each customer

Protect your most valuable assets

Important to protect your data

The need for cryptographic services is increasing, as hostility and theft are becoming more and more a serious threat for companies that are critically depending on the internet. Nowadays, threats are no longer directed towards “traditional” high-security industries such as bank and finance, but are increasingly targeting all kinds of sectors. The importance of protecting your data is, therefore, increasing.

Basefarm Hardware Security Module

The Basefarm Hardware Security Module (HSM) is a service that helps to improve the physical protection of applications that really count for the continuation of your business. With the HSM-device, we literally create a physical shield around your critical applications and data to minimize intrusion risks. This is done by several cryptographic services in one single box.

HSM a part of PCI DSS compliance requirements

In the bank and finance industries, HSM has been used for numerous years already, securing core data and transactions. HSM now also has a defined role in PCI DSS compliance requirements, to minimize the risk of theft of end-user data. The HSM helps to protect sensitive data that should never be accessed by outsiders, and gives control over crypto keys. It also helps to control who accesses which data (or part of the environment) and this is useful when you have a system that is accessed by many different people or machines.

Title

PKI – Digital Signatures and host independent Multi Factor Authentication

When putting in place a Public Key Infrastructure, in order to achieve ultimate access control and forensics possibilities, the HSM uses asymmetric encryption (private key is used to decrypt public key). It generates random codes and checks credit card control codes (CVVC). It also makes it possible to assign an ID to a machine or to users. This provides the strongest authentication available and secures both machine and people access.

Full redundancy

The Basefarm HSM service is provided with full redundancy in order to reach high availability requirements and to secure your business continuity. We set up the service in two different data centers in order to provide the highest possible availability. If one data center should go down, the other will automatically take over.

HSM-AS-A-SERVICE

HSMs are often part of a mission-critical infrastructure such as a Public Key Infrastructure or online banking applications. By adding the Basefarm HSM service to your environment, you will get the ultimate protection of your data, without the substantial investment of building an HSM on your own.

Customer-specific three key ceremony

You, Basefarm and our HSM-supplier get keys to access the HSM-device. To make it even more secure, all keys need to be physically present to access the device, as well as the key holders that own the codes of the encrypted keys. We call this ‘the three key ceremony’, the safest ceremony you could imagine.

Security in our DNA

PCI DSS 3.0 level 1-service provider
ISO 27001-certified
ITIL-framework
Quality handbooks

Service level agreement
Member of FIRST.org
Advanced security products
Security Incident Response Team (SIRT)

Security across the entire service lifecycle

PayEx needed to design, build and run their state of the art Nordic payment solution catering robustness, flexibility and cost efficiency. The platform needed to be PCI DSS compliant as it exchanges, processes and stores huge amounts of card data and financial information. The solution is mission critical and margins and reputation are built over time, by delivering payment services with high quality, competence and value. They needed a secure and stable environment and a partner with solid systems for operations and interaction, as well as an “advisor” regarding technology.

Basefarm designed the platform in close collaboration with PayEx. Since the PCI solution went live in the summer of 2011, it has now passed 300 million transactions with excellent performance, peaking at around 1.3 million transactions per day. PayEx use Basefarm actively and proactively in decision-making regarding the environment and other challenges related to technology.

Information security – THROUGHOUT THE SERVICE LIFECYCLE.

Speak to one of our specialists to find out how the Basefarm’s Perfectly Balanced Solutions can benefit your business.

www.basefarm.nl | +31 20 4066 466

Let’s get social: