Crypto4A QxEdge HSM Certificate Manager
Crypto4A’s quantum-ready Hardware Security Modules provide additional security to the Venafi Platform by providing secure storage and generation of machine identities.
SOLUTION HIGHLIGHTS
- First and only PQC algorithm (LMS) validated by NIST
- Central management allows deployments to scale from the cloud to the edge without scaling the resources needed to manage them
- Ensure consistent security of all cryptographic assets by protecting them with an HSM
- Simple to develop, deploy, and manage security applications on a unified platform
- Reduce latency between HSM and CA by utilizing Crypto4A's all-in-one appliance
- Supports both Venafi master encryption key storage as well as Central Key Generation
SOLUTION OVERVIEW
Crypto4A, a leader in quantum-ready cybersecurity solutions, has helped organizations achieve the highest possible entropy, most secure key storage and a post-quantum ready PKI. Until now organization have not been prepared for a post-quantum world where cryptographic systems, like machine identities, cannot be trusted. As a result of Machine Identity Management Development Fund sponsorship, Crypto4A’s quantum ready HSM, QxEdge supports a native integration to Venafi platform. This allows Venafi Certificate Manager the ability to utilize the HSM for secure key generation used in the creation of machine identities, as well as additional protections for the Venafi database.
Crypto4A is the first and only HSM vendor that NIST has certified for LMS algorithm support, with LMS being the very first PQC algorithm that NIST has included in their Cryptographic Algorithm Validation Program (CAVP). Both LMS and XMSS were recommended for code and firmware signing by NSA last year when they published the CNSA 2.0 (PDF). Crypto4A's QASM Crypto Module already supports XMSS as well, so as soon as NIST begins the validation process for XMSS, they are ready to test.
Certificate Manager, Self-Hosted is the product formerly known as Venafi Trust Protection Platform