Public Cloud Integration
Natively Connecting VirtuCrypt Cloud HSMs
Understand the features and benefits of cloud integration, what components comprise the infrastructure, and how this service is deployed. Whitepaper also includes usage example with Amazon Web Services cloud platform as well the below topics:
- Overview of Integration Components & Process Flow
- Multi-region Crypto Processing
- Functionality, Throughput & Redundancy
- Methods for Expansion
- History of Financial HSM Architectures
Download Whitepaper
Benefits of Integrating Cloud HSMs
Multi-Region Crypto Processing
Enable a single cloud HSM to connect with multiple public cloud regions. Multiple applications can simultaneously connect to VirtuCrypt cloud HSMs through the public cloud from varying global regions.
Available Cloud Services
VirtuCrypt cloud HSMs can be utilized just like many other public cloud services made available on the provider service marketplace. For instance if an organization is already using Amazon AWS, the onboarding and renewal of the service is managed via AWS Marketplace.
High Availability & Disaster Recovery
Ensure high fault tolerance by configuring cloud HSMs to be highly available and have full disaster recovery capabilities. Cloud HSMs can be configured and automated as failover devices in the event regional processing resources are unavailable.
Cloud Elasticity
Continue to intelligently grow your cloud footprint by creating secure HSM environments that can scale on demand while also accomplishing system updates and maintenance without taking core systems offline.
Integration Components
CryptoVerse
Utilizing a PKI managed by VirtuCrypt, a Cryptoverse isolates which services the public cloud applications have access to. A Cryptoverse is used to ensure mutual authentication and strong encryption with all endpoints, whether those are cloud HSM services, incoming connections to VirtuCrypt, access points like load balancers and edge systems, or client applications.
CryptoTunnel
A CryptoTunnel defines the connection parameters to VirtuCrypt. It consists of a name, the Cryptoverse used to authenticate incoming clients, the service that the tunnel will be routed to (the cloud HSM), the incoming channel (Internet, public cloud, etc.), the public cloud provider, the region of the public cloud that will be operated in, and any information that must be whitelisted.
VirtuCrypt Access Point (VAP)
A VirtuCrypt Access Point (VAP) is a VirtuCrypt-owned Virtual Private Cloud. Virtual Private Clouds allow for a logically separated section of the public cloud where an organization, in this case VirtuCrypt, defines its own virtual network. The VAP enables access to VirtuCrypt from a public cloud in a secure manner without directly transiting the Internet, and it also offers connectivity for a range of other access methods.
EndPoints / Private Link
The endpoint allows your organization to access VirtuCrypt in the public cloud. An endpoint must be designated on the VirtuCrypt Access Point to create the communication channel between the public cloud and the VirtuCrypt cloud HSM.
Integrating Cloud HSMs with Public Clouds
Understand the features and benefits of cloud integration, what components comprise the infrastructure, and how this service is deployed by scheduling a personalized product demonstration. Complete the form to request a customized demo which can include:
- Overview of Integration Components & Process Flow
- Multi-region Crypto Processing
- Functionality, Throughput & Redundancy
- Methods for Expansion
- History of Financial HSM Architectures
Schedule Product Demo
VirtuCrypt Cloud Hardware Security Modules
All VirtuCrypt cloud services are powered by industry-leading hardware security modules (HSM) from Futurex and rely on Futurex applications for the VirtuCrypt Intelligence Portal (VIP) management interface. VirtuCrypt instances are located in multiple high-security data centers around the world. With VirtuCrypt cloud HSMs, businesses can utilize some of the most powerful cryptographic devices available today through native public cloud integration to support financial & general purpose cryptographic processing.