Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

1/11/2010
02:14 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Thales Introduces Next-Generation Hardware Security Modules

nShield Connect 500 and nShield Connect 1500 latest network-attached hardware security modules

Thales, leader in information systems and communications security, announces nShield Connect 500 and nShield Connect 1500, two network-attached hardware security modules (HSMs) that bolster the company's comprehensive product portfolio of industry-leading HSMs. Part of the nCipher product line, nShield Connect 500 and 1500 complement nShield Connect 6000, Thales's flagship HSM and the fastest on the market today. Thales is the only company to offer dual, hot-swappable power supplies for enhanced business continuity, which come standard on nShield Connect models. The products meet the varying demands of mission-critical security systems that protect personal and other sensitive information.

HSMs are widely accepted as industry best practice for protecting cryptographic keys and for performing encryption and digital signing. HSMs provide a cost-effective way to increase the security of software-based systems, enforcing access control and key management policies within a tamper-resistant security environment. Thales nShield Connect HSMs are network-attached appliances that act as a highly scalable, centralized resource for managing keys and protecting sensitive data. The nShield Connect product line is easily deployed to support a wide range of shared security infrastructure applications such as Microsoft Certificate Services (PKI), Entrust Authority Security Manager, RSA Certificate Manager, Oracle Database, and Microsoft SQL Server.

While nShield Connect 6000 supports up to 100 servers, virtual machines or other application instances, nShield Connect 500 and 1500 support up to 10 and 20 clients respectively, enabling organizations to cost-effectively deploy the industry's leading HSMs to meet their specific performance requirements. In addition, nShield Connect 500 and 1500 are equipped with dual hot-swappable power supplies and field serviceable fans, like nShield Connect 6000, to support the needs of high-capacity shared IT infrastructures within modern data centers, where resilience and ease of maintenance are a primary concern.

"The introduction of the entire family of nShield Connect hardware security modules raises the bar in meeting customer demand for scalable, high-performance and resilient key management infrastructures," says Franck Greverie, Vice President, Managing Director for the information systems security activities of Thales. "By introducing nShield Connect 500 and 1500 to our product portfolio, we are demonstrating our market leadership, offering dual, hot-swappable power supplies as standard in our entry-level products " recognizing business continuity is a critical factor for all of our clients. The nShield Connect portfolio offers our customers an easy and scalable upgrade path from our net HSM family."

The Thales nShield Connect product portfolio provides a number of industry-leading benefits, including:

  • Unsurpassed business continuity and field serviceability " nShield Connect 6000, 1500 and 500 are the only HSMs to offer dual Power Supply Units (PSUs), helping customers improve the availability of their solutions by connecting the HSM to two independent power sources. One of the important benefits of the design is to enable servicing to be carried out in the field. The dual power supplies are hot-swappable, enabling customers to change the power supply without having to interrupt services. All nShield Connect HSMs also contain redundant, field-serviceable fans.

  • Unique scalability " While nShield Connect 6000 is the world's fastest network-attached HSM, processing up to 6,000 signing transactions per second (TPS) with RSA 1,024-bit keys, nShield Connect 500 and 1500 are optimized for customers requiring high availability at a lower speed. nShield Connect 500 processes up to 500 signing TPS while nShield Connect 1500 processes up to 1500 signing TPS. In addition, nShield Connect 6000 delivers unmatched performance when using more secure, 2,048-bit keys that are increasingly recommended by regulators and industry bodies, including the U. S. National Institute of Standards Technology (NIST), the French Central Information Systems Security Division (DCSSI), and the German Federal office for information Security (BSI).

  • Reduced cost of ownership " The inherent resiliency of all nShield Connect HSMs and the ability to provide cryptographic services to as many as 10, 20 or 100 application instances simultaneously (depending on the model deployed) reduces the total cost of ownership. The increased number of product offerings enables customers to customize their own shared, robust infrastructure while purchasing fewer HSM devices, using less rack space and less power.

  • Powerful key management " Acting as a centralized resource, nShield Connect unifies key management policies and provides a single point from which to administer cryptographic keys, avoiding the need to visit remote servers. This addresses the costly and error-prone operational processes of key generation, rotation and recovery across distributed networks " costs that are further amplified when stringent supervision and audit rules are in force. nShield Connect 500, 1500 and 6000 fully support the Thales Security World key management framework providing dual controls with two-factor authentication and powerful separation of duties, delivering enhanced governance and, above all, confidence.

  • High security " nShield Connect 500, 1500 and 6000 feature a tamper-responsive chassis, and their cryptographic components are validated to FIPS 140-2 level 3 and Common Criteria EAL 4+, positioning nShield Connect for use in highly regulated environments.

    nShield Connect 500 and 1500 and 6000 are part of the nCipher product line and are fully compatible with existing Thales nShield Solo and Thales netHSM products. Customers can mix and match these products under a common Thales Security World key management framework and utilize existing developer tool kits.

    Notes to editor

    Thales is one of the world leaders in the provision of Information and Communication Systems Security solutions for government, defense, critical infrastructure operators, enterprises and the finance industry. Thales's unique position in the market is due to its end-to-end security offering spanning the entire value chain in the security domain. The comprehensive offering includes architecture design, security and encryption product development, evaluation and certification preparation and through-life management services.

    Thales has forty years of unrivalled track record in protecting information from Sensitive But Unclassified up to Top Secret and a comprehensive portfolio of security products and services, which includes network security products, application security products and secured telephony products.

    About Thales

    Thales is a global technology leader for the Aerospace and Space, Defence, Security and Transportation markets. In 2008, the company generated revenues of 12.7 billion euros with 68,000 employees in 50 countries. With its 25,000 engineers and researchers, Thales has a unique capability to design, develop and deploy equipment, systems and services that meet the most complex security requirements. Thales has an exceptional international footprint, with operations around the world working with customers as local partners. www.thalesgroup.com

    Contacts:

    Alexia Ward/Zoe Gray

    Hotwire (PR Agency)

    0207 608 4687/641

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Commentary
    How SolarWinds Busted Up Our Assumptions About Code Signing
    Dr. Jethro Beekman, Technical Director,  3/3/2021
    News
    'ObliqueRAT' Now Hides Behind Images on Compromised Websites
    Jai Vijayan, Contributing Writer,  3/2/2021
    News
    Attackers Turn Struggling Software Projects Into Trojan Horses
    Robert Lemos, Contributing Writer,  2/26/2021
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Write a Caption, Win an Amazon Gift Card! Click Here
    Latest Comment: This comment is waiting for review by our moderators.
    Current Issue
    2021 Top Enterprise IT Trends
    We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
    Flash Poll
    How Enterprises are Developing Secure Applications
    How Enterprises are Developing Secure Applications
    Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2021-21360
    PUBLISHED: 2021-03-09
    Products.GenericSetup is a mini-framework for expressing the configured state of a Zope Site as a set of filesystem artifacts. In Products.GenericSetup before version 2.1.1 there is an information disclosure vulnerability - anonymous visitors may view log and snapshot files generated by the Generic ...
    CVE-2021-21361
    PUBLISHED: 2021-03-09
    The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in public CI/CD, this can lead to sensitive credentials being exposed to malicious actors. This is fixed...
    CVE-2021-24033
    PUBLISHED: 2021-03-09
    react-dev-utils prior to v11.0.4 exposes a function, getProcessForPort, where an input argument is concatenated into a command string to be executed. This function is typically used from react-scripts (in Create React App projects), where the usage is safe. Only when this function is manually invoke...
    CVE-2021-21510
    PUBLISHED: 2021-03-08
    Dell iDRAC8 versions prior to 2.75.100.75 contain a host header injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary ‘Host’ header values to poison a web-cache or trigger redirections.
    CVE-2020-27575
    PUBLISHED: 2021-03-08
    Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web administration contains functionality in which administrators are able to manage users. The edit users form contains a parameter vulnerable to command injection due to insufficient validation.