High Assurance | SSL Certificates & Other PKI Solutions

FAQ

Q-1. What Is A Hardware Security Module (HSM)?

A. A Hardware security module is a powerful hardware device, which is used to protect the confidential data. In other words, it manages cryptographic keys for the secure usage of applications, identities and databases through the mechanism of encryption, decryption and authentication. By key management, we mean an HSM can help you generate, store and revoke the digital keys. Being a businessman, you can safeguard your business related confidential data by making sure that only the authentic users are accessing it. Now, this information can be cryptographic keys such as public keys or private keys, which are used to encrypt or decrypt your sensitive data.
In a layman term, an HSM is like a vault that protects your digital keys, which can further be used for data encryption (converting data to secret codes) or decryption (Converting secret codes into a readable format).

Q-2. How A Hardware Security Module Can Help An Organization?

B. A hardware security module can be extremely helpful for organizations to secure their confidential data. A hardware security module can also be used for digital document signing, GST signing and e-invoicing, e-receipt and OTP management as well.

We make use of your personal information for market research and to inform you with the most updated products and services. This information also helps us find the opportunities related to prospective sales and marketing.

Q-3. What Are The Most Important Functions Of An HSM?

A hardware security module can perform the following tasks:

Q-4. How Many Types Of Hardware Security Modules (HSMs) Are Available In The Market?

Here are the most common types of hardware security modules:

Q-5. How Long Does It Take To Install A Hardware Security Module (HSM)?

A. Usually, it takes around 2 hours to install an HSM. But, it may vary according to your IT infrastructure. If your organization has a huge IT infrastructure, HSM installation may take a little bit more time.

Q-6. What’s The Price Of A Hardware Security Module (HSM)?

A. The price of a hardware security module may vary according to its type. The most economical HSM is known as PCI hardware security module.

Q-7. How To Evaluate The Performance Of The Best Hardware Security Module (HSM)?

A. The performance of an HSM can be monitored via its transaction per second (TPS). TPS is a parameter to evaluate the transactions performed by an HSM per second.

Q-8. Is An HSM Useful For Aadhaar Authentication And GST Signing?

A. Yes. A hardware security module can be used for Aadhaar based authentication and GST signing at higher transaction speed.

Q-9. Which Is The Best HSM Vendor Or The Best HSM Solutions Provider In Delhi, Mumbai And Chennai?

A. Kryptoagile is one of the best HSM solutions provider in Delhi, Mumbai and Chennai. All year round HSM technical support and being powered with an impressive arsenal of HSMs make Kryptoagile stand among the best HSM vendors in India.

Q-10. Do We Get Free HSM Technical Support During The First Year Of HSM Installation?

A. Once the HSM is installed by Kryptoagile, you can opt for paid HSM technical support according to your business requirements.

Q-11. Can An HSM Be Used For Credit/Debit Card Key Generation?

A. Yes, You can use an HSM for credit card and debit card key generation.

Q-12. Does An HSM Support API Based Signing And XML Signing?

A. Yes, a hardware security module supports API based signing.

Q-13. How Can An HSM Help Me If I Am Running An E-Commerce Store?

A. A hardware security module can be extremely helpful for your e-commerce business, as it helps you generate multiple e-invoices within minutes. Moreover, it lets you perform GST signing, PDF signing and various kinds of document signing as well.

Q-14. Is There Any Updates in Domain Validation Policy From 2022 Onwards?

Two domain validation policy changes are expected to take effect before the end of 2021 that may affect how you validate your website information for certificate requests and pre validate domains. These policy changes apply to all new certificate requests, renewals, and reissues. These changes will not affect TLS/SSL certificates already issued.

Q-15.What are The Major Changes Announced?

Domain revalidation will be required every 398 days. Mozilla and CA/B Forum are reducing domain validation reuse to 398 days. This will require customers who manage pre-validated domains to revalidate their domains each year. The policy change is expected to take effect on October 1, 2021.

Q-16.How does The New Policy Affect Existing DCV (Domain control validation) Methods?

CA/B Forum is changing file-based domain authentication, also known as file auth, token auth, http auth, or method 18 and 19. The change will disallow the use of the file-based domain control validation method for wildcard certificates and limit the effective use of the method for subdomains. Email and DNS-based DCV methods are not affected.

Q-17.Will This New Policy Also Has Some Influence on Subdomains?

Currently, the industry allows domain validation at the primary domain level (example. com) to also apply to wildcard certificates (*. example. com) and all subdomains (support .example. com) under the validated domain. The policy change will require separate file-based validation for each fully qualified domain name. Email and DNS-based validation can still be used for wildcard certificates and reused for validation of subdomains under a validated domain.

Q-18.When will the New Policy Come into Effect?

The new policy change is expected to take effect at the end of 2021.

Q-19.What should be the Plan of action to be compliant of this new policy?

No immediate action is required. In the meantime, to help you prepare for these changes:

MORE QUESTIONS?

We are here to help you navigate industry changes. If you have any questions about these new policies or other concerns, feel free to contact our Sales and Support Team.

>>>>>