Download Factsheet

PRIMUS BLOCKCHAIN HSM

Securing blockchain systems and crypto assets has never become easier than with the Securosys Primus Blockchain HSM. Built on top either the Primus X-Series and E-Series general purpose HSM it brings additional unique functionality to the Distributed Ledger Technology (DLT). It provides multi-signature and multi-authorization functionality as well as blockchain algorithms and functions in a secure hardware platform. This allows the application (and its programmers) to focus on business functionality, while blockchain security and key access is managed by the Blockchain HSM.

Blockchain-and-Crypto-Assets-HSM

Blockchain and Crypto-Assets HSM

OVERVIEW

The Securosys Primus Blockchain HSM is an extension of the FIPS certified Primus X-Series and E-Series HSM. Multi-signature and multi-authorization functionality is offered as the Smart Key Attributes (SKA) module. Different types of blockchain algorithms, like Bitcoin, Ethereum, Ripple, or IOTA can be loaded as independent modules.

AVOID CRYPTO ASSET LOSS

Often, news reports are focused on the loss or theft of crypto assets worth millions of dollars. Making blockchain technology often a target to take the blame and being called out as not ripe enough for real use cases or their adoption. However, this is not a problem of the blockchain or distributed ledger technology. It can be avoided.

 

THE WEAK LINK: THE WALLET

The weak link in the digital-currency system is the wallet, which is located on the application level and is used to manage the crypto assets. You can read more on this topic in our blog article on securing blockchain and crypto assets.  

  • Choosing crypto merchants that can ensure a secured platform for their transactions with crypto currencies
  • Using cold storage – but a secure one, please!
  • Choosing a multi-signature solution for storing your crypto assets
BC-CA Hardware Security Module

Secure generation and management of private keys, multi-signature access and use, targeted at financial institutions like banks, funds, exchanges and other blockchain systems

crypto-hackproof-with-securosys

Protecting the private keys is paramount

The Securosys Primus Blockchain HSM allows system architects a strict separation of business functionality and security. By offering a full set of blockchain and crypto custody/assets functions inside the blockchain HSM, no security relevant operation has to be performed in the business applications. So even when such an application is operated on a virtual machine or a large cloud computing provider the critical operations are only performed in the secure environment of the Blockchain HSM.

Key Features

Key / Seed Generation

  • The HSM has a dual True Random Generator TRNG entropy source, and NIST SP800-90 compliant RNG.
  • Key derivation on asymmetric keys including built-in BIP 32
  • Direct secure address generation (hash of the public key), which delivers extra PQC protection in the HSM

Side-channel protection

  • Prevents extraction of keys without compromising the storage

HW-based tamper response

  • Cannot be compromised by software bugs

Segregated functions in hardware and hardware “firewalls”

  • Prevents attack by silicon vendor
  • Mitigates risk from compromised software interacting with business logic
  • Process segregation that reduces risks associated with the communication stack being compromised

Cryptographic functions in hardware

  • side channel protection
  • protection from Spectre / Meltdown kind of attacks
  • Field upgradable FPGA implementation

 

Role model with multi factor authentication

  • Segregation of duties avoids risks with single admin having all information
  • Mitigates risks associated with hacked admin accounts

Integrated key access control

HA redundancy and performance scalability

  • Device clustering for HA redundancy and performance scalablity with integrated secure backup feature

Smart Key Attributes (fine-granular access to individual keys)

  • Integrated multi-signature authentication scheme.

Support for various crypto currencies

  • ETH, BTC based, Ripple, IOTA and many morePrimus Blockchain HSM Supported Crypto Currencies-1

Didn't find what you were looking for?

Please find here our product overview or solutions overview page.

Contact us

Interested in what crypto security standards are applied in today’s crypto exchanges? 

Want to know more about integrated key access control?

Write us a message or request a call now