It is an innovative, auditable and tailored solution that can be used for different cases, such as:

Electronic Invoicing, Digital Signature, PKI Infrastructure, Code Signing, Timestamp, Data Encryption, among others.

HSM Cloud by CEGA Security is a service that allows you to carry out cryptographic operations in a scalable way, which allows you to not have to purchase a device, but simply configure the client so that you can start using an HSM as a Service. The main objective is to safeguard the cryptographic keys to protect the security of the information. The Hardware Security Modules that we use for our HSM Cloud Service, are certified with the highest international levels of security, such as the FIPS 140-2 Level 3 Certification and are protected in Tier IV and Tier V Mexican data centers which can be audited. If necessary, a CEGA Security Team Member will accompany you throughout the audit process.

The HSM Cloud by CEGA Security maximizes the power of the HSM to optimize and distribute resources in a secure manner, which makes it easier for us to scale our service based on the needs our customers may have. It allows implementation in shorter amount of time compared to traditional HSM devices.

To carry this out, security policies are applied from the client´s services to CEGA Security´s HSM´s, enabling a testing environment and offering our clients a rapid integration code, which in turn validate in a short amount of time the functionality like it would in any other cryptographic module. Any necessary configuration is integrated into the customers’ infrastructure to perform service tests and verifications before launching to production. Once in production, our team of specialists will be continuously monitoring your service to ensure optimal operation without compromising the security of your keys and certificates.

CEGA Security personnel DO NOT have access at any time to your cryptographic keys or information. The service is constantly monitored to ensure service availability. This monitoring is done 24/7 from our Headquarters Operation Center in Mexico, by trained engineers with extensive experience in HSM implementation.

Our specialists will help you or be up and running efficiently in just a few days, so that you can focus 100% on your business. In the event that you require greater capacity, our infrastructure will be fully scalable for any period of time that is required.

HSM Cloud by CEGA Security has support in English and Spanish

Our HSM Cloud service has been highly successful for its ease of integration, reliability, and performance for e-Invoicing, digital signature, and trusted service providers. It is ideal for Electronic Invoice Providers (PAC, PCCFDI, OSE).

• Support from some of the top technical specialists in the implementation and integration of HSM Solutions.
• It has been validated in accordance with FIPs 140-2 Level 3
• Customized Plans of Use
• Migration from a physical HSM
• Support in English and Spanish
• Scale your transactions On Demand
• Next generation devices
• Hosted in Data Centers with the Highest Security Standards
• Auditable Infrastructure
• Low implementation time
• Elimination of maintenance cost
• Service delivery in days not weeks!

Our multidisciplinary team of specialists are highly trained in areas such as development, software, cryptography, information security and infrastructure, which are focused on the implementation and integration of both physical and cloud HSM integrations. We offer each and every one of our clients a comprehensive service, helping to solve any inconvenience that may arise related with their device until achieving a successful deployment in CEGA Security´s HSM Cloud.

CEGA Security´s turnkey service for HSM Cloud, solves all necessary integration points and compliance for our clients.

• PKCS#11
• JAVA Cryptography Extension (JCE)
• Microsoft Crypto API (CSP), Cryptography Next Generation (CNG) and SQL Extensible Key Management (SQLEKM)
• Cryptographic eXtended services Interface (CXI), the high-performance interface that these teams have, guarantees easy integration of cryptographic functionality in client applications.

• RSA, DSA, ECDSA con curvas NIST and Brainpool
• DH, ECDH con curvas NIST and Brainpool
• AES, Triple-DES, DES
• MAC, CMAC, HMAC
• SHA-1, Familia-SHA2, SHA3, RIPEMD
• Hash-based Deterministic Random Number Generator (DRNG)
• True Random Number Generator (TRNG according to AIS31 class PTG.2)
• All algorithms are included in the price of the product

One of the biggest advantages that we offer at CEGA Security is that the infrastructure can be audited in any of the data centers where our devices are stored around the globe. One of our representatives will be glad to accompany you during the audit.

Our HSM Cloud by CEGA Security technology is also based on CEGA Security expertise.

• FIPS 140-2 Level 3
• CE, FCC Class B
• UL, IEC / EN 60950-1
• CB certificate
• RoHS II, WEEE

Charges vary in proportion to usage or the range of transactionality with the HSM and the number of keys stored in your partition. We also have special plans to integrate into your DRP.