ARIA microHSM

Zero-Footprint HSM Encryption and Key Management

Hundreds of Operations per Minute – With No Performance Impact

The ARIA microHSM hardware security module solution provides a secure, easy, and low-cost way for organizations to encrypt their high-value data while maximizing application performance. Users benefit from a ten times performance boost over software- or hypervisor-based encryption approaches that compete for CPU cores.

The ARIA microHSM approach is unique in that it can operate either as a standalone appliance or on a secured SmartNIC card that can run within the data center servers – efficiently securing the application data across the PCIe bus without ever going across an unsecured network. This gives it twice the performance of any other hardware security module at a fraction of the cost and with zero additional data center footprint.

ARIA microHSM

ARIA microHSM Benefits

 

hardware security module

Zero-footprint Deployment
Deploy in any standard server in minutes, eliminating the need for network connectivity to an appliance.


HSM encryption

Securely Stored Keys
Encryption keys are securely stored and encryption operations are executed within ARIA microHSM’s hardware-based zone-of-trust. Separating these functions from the host core provides improved security and performance.


HSM hardware security module

Protect Crypto Keys
Crypto keys can’t be exposed and stolen on our hardware security module. This is a significant advantage over those that can be stolen when executed by applications running the server host.


HSM security

Secure Certificates
Securely generate certificates and encryption keys for the crypto operations leveraging the ARIA KMS application.


Compatible Products


Features:

  • Up to ten times the performance in server at half the cost when compared to a network connected HSM appliance
  • The industry’s most flexible but secure key management handling capabilities
  • Open standard KMIP encryption with a large ecosystem of KMIP-capable applications
  • FIPS 140-2 Level 1 compliance
  • The ability to be deployed in minutes in any standard server
  • Plug and play HA capabilities, unlike the painful configurations from legacy industry leading platforms

Specifications

Please see below:

Specs Myricom SIA SmartNIC Myricom SIA Express
Bus Interface: PCI Express Gen 3, 8 Lanes wide PCI Express Gen 3, 8 lanes wide
Form Factor: PCI Express Full Height, 3/4 Length PCI Express half-height, half-length (HHHL)
Electrical Power: < 65W < 40W1
Cooling Requirements: It is required that adapters be installed into servers that provide air flow over the PCIe slots It is required that adapters be installed into servers that provide air flow over the PCIe slots
Cooling Options: Passive cooling Active cooling
Operating Temperature: 0-50 deg C (250 LFM min at max ambient temperature) 0-50 deg C (290 LFM min at max ambient temperature)
Storage Temperature: -40 to 70 deg C -40 to 70 deg C
Storage Humidity: 5% to 90% non-condensing 5% to 90% non-condensing
Processor: Network SoC – 16x, 2.0 GHz ARM cores Network SoC – 8x, 3.0 GHz ARM cores
Hardware Acceleration: Support for, and the acceleration of, various security functions, such as symmetrical and asymmetrical encryption
Line rate packet classification
Deep packet inspection (DPI)
Flow generation
Traffic flow accelerator engine.
100 Gb/s cryptography engine with single-pass hashing and encryption/decryption. Deep packet
inspection (DPI)
Flow generation
Memory: 8-32GB DDR4, 64GB Flash 16Gb Flash
Network Connectivity: Dual SFP+/SFP28 ports; 10 or 25G, 1x1000Base-T – RJ-45 Dual SFP+/SFP28 ports; 10 or 25G
Software Support: Host side Drivers available for Linux (CentOS, RHEL, and Ubuntu)
Supports DPDK for Linux (high-performance packet processing)
Host side drivers available for Linux (CentOS, RHEL, and Ubuntu)
Supports DPDK for Linux (high-performance packet processing)
SW Version supported: ARIA SDS ARIA SDS
Security: ARIA Packet Intelligence
ARIA KMS
ARM TrustZone
Secure Boot Secure Key Storage
ARIA Packet Intelligence and ARIA KMS
ARM TrustZone
Secure Boot Secure Key Storage
NC-SI over MCTP (SMBus, PCIe VDM)
NC-SI over RMB
Throughput: 2×10/25Gb/s 2x 10/25Gb per Second

Order Details

Please see below:

Model Number Product Description
25G-PCIE3-8B-2S-HSM SIA – Dual 10/25G Security Intelligent Adapter for Key Management. This version is configured as a Hardware Security Module (HSM) supporting encryption key management.
25G-PCIE3-8C-2S-HSM SIA – Dual 10/25G Security Intelligent Adapter (low profile) for Key Management. This version is configured as a Hardware Security Module (HSM) supporting encryption key management.

OEM

Model Number Product Description
25G-PCIE3-8C-KMS Myricom SIA Express – Dual 10/25G low-profile (HHHL). Includes 16 GB of DDR4 memory.
SPT-KMS-Gold KMS Annual gold level support (5×9).
OEM Datasheet See OEM product datasheet.

Warranty and Support

One year for hardware. Refer to the support datasheet for support offerings and provided services

Downloads

Visit our Download Center for the latest software, as well as other resources such as user guides and FAQ documents.

Contact Us to Speak to a Cybersecurity Expert!

Resources and Related Content

Contact Us to Speak to a Cybersecurity Expert!

Resources and Related Content

News

February 4, 2021
ARIA Cybersecurity Solutions Launches ARIA CloudADR Offering

A Cloud-based, virtual AI-SOC for automated threat detection and response

February 1, 2021
SPE Selects ARIA microHSM for Key Encryption and VMware Security

Replaces legacy HSM technology with a turnkey SmartNIC-based solution

January 21, 2021
ARIA Cybersecurity Solutions Strengthens Relationship with StorMagic to Address the Need for a Secure, High-Performance Hardware Security Module (HSM)

The ARIA microHSM combined with StorMagic SvKMS provides the industry’s simplest to deploy HSM with low turn around latency and high availability at a…

 

Events

May 25, 2021
The Northern California Virtual Cybersecurity Summit is a new way to connect with like-minded executives, innovative solutions providers, experts and luminaries. With a shared…
May 12, 2021
The Canada West Virtual Cybersecurity Summit is a new way to connect with like-minded executives, innovative solutions providers, experts and luminaries. With a shared…
April 29, 2021
The Phoenix Virtual Cybersecurity Summit is a new way to connect with like-minded executives, innovative solutions providers, experts and luminaries. With a shared interest…

 

Encrypt VMware Environments in Four Easy Steps

Encrypt VMware Environments in Four Easy Steps

Automatic management, generation, and distribution of encryption keys.

 

Watch Demo