Smart Key Attributes (SKA)
Smart Key Attributes - patented SKA technology
Challenge
The Securosys Smart Key Attributes feature enables fine-grained authorization of private key usage. This empowers business applications to establish rules governing HSM operations on a per-key basis. Organizations can tailor authorization protocols to align with specific business processes by assigning keys with corresponding rules.
Importantly, these rules are enforced within an HSM's secure environment, benefiting from the same robust physical segregation and tamper protection as the private key storage itself, and are consequently certified under Common Criteria EAL4+ standards.
Solution
The Securosys HSM offers a solution by granting precise control over key usage through sophisticated authorizations. The integration of Securosys Smart Key Attributes (SKA) (link to SKA page) facilitates the enforcement of these policies and rules seamlessly.
To streamline the implementation of SKA's functionalities, the Securosys Transaction Security Broker (TSB) steps in. This standalone engine provides a REST-API and internal state management, simplifying the process. Crucially, it connects to an external database instance and integrates with SKA-enabled Securosys HSM, ensuring uncompromised security as all security-relevant operations occur within the HSM.
The TSB, coupled with SKA-enabled Securosys HSM, offers unparalleled granularity in controlling key actions and operations. Finance organizations can establish highly customizable policies for authorizing operations and transactions, as well as manage key blocking/unblocking and policy adjustments with ease.
Key Benefits
Highly Customizable Authorization Rules
SKA provides unmatched flexibility in defining authorization rules for business processes. These attributes benefit from the same robust protection as the keys themselves, ensuring comprehensive security.
Swiss-made
Designed, developed, and manufactured in Switzerland, SKA adheres to stringent quality standards, ensuring reliability and trustworthiness.