Questions tagged with AWS CloudHSM
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello community,
I am looking for Cloud HSM JCE based HSM connection. One of my requirements is to generate Plain AES key and Wrap it with RSA key. This is to implement something similar to what is...
1
answers
0
votes
315
views
asked 2 years agolg...
I am testing out the cloudhsm and setting it up on a EC2 Win2019 server. I get the following error when I run the cloudhsm mgmt util to connect the server to the cloud HSM:
```
PS C:\Program...
1
answers
0
votes
575
views
asked 2 years agolg...
Are AWS services assigned IAM roles that allow them to access the CloudHSM API....and then use the CloudHSM client Crypto User account to complete their task encrypt/decrypt task? If no, how does an...
2
answers
0
votes
354
views
asked 2 years agolg...
My understanding is, Private Key should never leave HSM cluster. HSM-Client should pass key-handle, Mechanism and payload to the HSM-Server and HSM-Server should encrypt or sign the payload and give...
0
answers
0
votes
153
views
asked 2 years agolg...
Hello there, I do have a requirement in my application to encrypt and decrypt data using a symmetric key algorithm (mostly AES/CBC/PKCS5Padding).
CONSTRAINT and Requirements are
1. I need to use...
1
answers
0
votes
1009
views
asked 2 years agolg...
Hi, I am trying to use Cavium in a Java application for two-way SSL handshake. My application is the client application. However when the application runs, the client handshake fails with the...
0
answers
0
votes
179
views
asked 2 years agolg...
I am assuming that when you follow the steps to use "TLS client-server mutual authentication," the default key can still be used.
* Is it possible to **only** allow "TLS client-server mutual...
1
answers
0
votes
427
views
asked 2 years agolg...
Can an application be architected so that it leverages CloudHSM clusters in multiple regions (at least 2)? Possibly by using the cross-region replication/cloning so data can be decrypted in both...
4
answers
1
votes
1306
views
asked 3 years agolg...
I understand DocumentDB supports SSE via KMS (1 key per cluster). However, does it support client-side encryption or the AWS encryption SDK?
3
answers
1
votes
677
views
asked 3 years agolg...
Hi,
I'm trying to issue RSA key pairs on AWS CloudHSM with a JAVA application using IAIK PKCS#11 Wrapper and JVM JCE Provider and I'm facing some difficulties. Indeed, for now, the only way to...
2
answers
0
votes
488
views
asked 3 years agolg...
Hello,
Can't launch any aws-cloudhsm-pkcs11-examples. C_Initialize() returns error code 5 (CKR_GENERAL_ERROR). What is missing?
I'm trying to integrate CloudHSM/PKCS11 library into...
1
answers
0
votes
559
views
asked 4 years agolg...
From the documentation, it seems that if you want to use TDE on Oracle on RDS, the TDE master key can be stored:
- In RDS itself (Oracle Wallet) or
- In ClassicHSM.
Do you have any inputs on the...
1
answers
0
votes
683
views
asked 4 years agolg...