ARIA microHSM
Zero-Footprint HSM Encryption and Key Management
Hundreds of Operations per Minute – With No Performance Impact
The ARIA microHSM hardware security module solution provides a secure, easy, and low-cost way for organizations to encrypt their high-value data while maximizing application performance. Users benefit from a ten times performance boost over software- or hypervisor-based encryption approaches that compete for CPU cores.
The ARIA microHSM approach is unique in that it can operate either as a standalone appliance or on a secured SmartNIC card that can run within the data center servers – efficiently securing the application data across the PCIe bus without ever going across an unsecured network. This gives it twice the performance of any other hardware security module at a fraction of the cost and with zero additional data center footprint.
ARIA microHSM Benefits
Zero-footprint Deployment
Deploy in any standard server in minutes, eliminating the need for network connectivity to an appliance.
Securely Stored Keys
Encryption keys are securely stored and encryption operations are executed within ARIA microHSM’s hardware-based zone-of-trust. Separating these functions from the host core provides improved security and performance.
Protect Crypto Keys
Crypto keys can’t be exposed and stolen on our hardware security module. This is a significant advantage over those that can be stolen when executed by applications running the server host.
Secure Certificates
Securely generate certificates and encryption keys for the crypto operations leveraging the ARIA KMS application.
Compatible Products
Features:
- Up to ten times the performance in server at half the cost when compared to a network connected HSM appliance
- The industry’s most flexible but secure key management handling capabilities
- Open standard KMIP encryption with a large ecosystem of KMIP-capable applications
- FIPS 140-2 Level 1 compliance
- The ability to be deployed in minutes in any standard server
- Plug and play HA capabilities, unlike the painful configurations from legacy industry leading platforms
Specifications
Please see below:
| Specs | Myricom SIA SmartNIC | Myricom SIA Express |
|---|---|---|
| Bus Interface: | PCI Express Gen 3, 8 Lanes wide | PCI Express Gen 3, 8 lanes wide |
| Form Factor: | PCI Express Full Height, 3/4 Length | PCI Express half-height, half-length (HHHL) |
| Electrical Power: | < 65W | < 40W1 |
| Cooling Requirements: | It is required that adapters be installed into servers that provide air flow over the PCIe slots | It is required that adapters be installed into servers that provide air flow over the PCIe slots |
| Cooling Options: | Passive cooling | Active cooling |
| Operating Temperature: | 0-50 deg C (250 LFM min at max ambient temperature) | 0-50 deg C (290 LFM min at max ambient temperature) |
| Storage Temperature: | -40 to 70 deg C | -40 to 70 deg C |
| Storage Humidity: | 5% to 90% non-condensing | 5% to 90% non-condensing |
| Processor: | Network SoC – 16x, 2.0 GHz ARM cores | Network SoC – 8x, 3.0 GHz ARM cores |
| Hardware Acceleration: | Support for, and the acceleration of, various security functions, such as symmetrical and asymmetrical encryption Line rate packet classification Deep packet inspection (DPI) Flow generation |
Traffic flow accelerator engine. 100 Gb/s cryptography engine with single-pass hashing and encryption/decryption. Deep packet inspection (DPI) Flow generation |
| Memory: | 8-32GB DDR4, 64GB Flash | 16Gb Flash |
| Network Connectivity: | Dual SFP+/SFP28 ports; 10 or 25G, 1x1000Base-T – RJ-45 | Dual SFP+/SFP28 ports; 10 or 25G |
| Software Support: | Host side Drivers available for Linux (CentOS, RHEL, and Ubuntu) Supports DPDK for Linux (high-performance packet processing) |
Host side drivers available for Linux (CentOS, RHEL, and Ubuntu) Supports DPDK for Linux (high-performance packet processing) |
| SW Version supported: | ARIA SDS | ARIA SDS |
| Security: | ARIA Packet Intelligence ARIA KMS ARM TrustZone Secure Boot Secure Key Storage |
ARIA Packet Intelligence and ARIA KMS ARM TrustZone Secure Boot Secure Key Storage NC-SI over MCTP (SMBus, PCIe VDM) NC-SI over RMB |
| Throughput: | 2×10/25Gb/s | 2x 10/25Gb per Second |
Order Details
Please see below:
| Model Number | Product Description |
|---|---|
| 25G-PCIE3-8B-2S-HSM | SIA – Dual 10/25G Security Intelligent Adapter for Key Management. This version is configured as a Hardware Security Module (HSM) supporting encryption key management. |
| 25G-PCIE3-8C-2S-HSM | SIA – Dual 10/25G Security Intelligent Adapter (low profile) for Key Management. This version is configured as a Hardware Security Module (HSM) supporting encryption key management. |
OEM
| Model Number | Product Description |
|---|---|
| 25G-PCIE3-8C-KMS | Myricom SIA Express – Dual 10/25G low-profile (HHHL). Includes 16 GB of DDR4 memory. |
| SPT-KMS-Gold | KMS Annual gold level support (5×9). |
| OEM Datasheet | See OEM product datasheet. |
Warranty and Support
One year for hardware. Refer to the support datasheet for support offerings and provided services
Downloads
Visit our Download Center for the latest software, as well as other resources such as user guides and FAQ documents.
Featured Resources
The ARIA™ micro Hardware Security Module (HSM) provides a secure, simple to deploy way for organizations to adopt and off-load KMIP-based encryption for their critical applications
A Modern HSM for Enterprise-wide Data Encryption in the Healthcare Industry
Contact Us to Speak to a Cybersecurity Expert!
Resources and Related Content
Resources
Modern HSM for Enterprise-wide Data Encryption in the Healthcare Industry
Healthcare organizations are notoriously vulnerable to network-borne cyberattacks, including ransomware, malware, and data exfiltration. These attacks are becoming more frequent, increasingly sophisticated, and nearly impossible to detect.
Data Sheet
Download Now
ARIA SDS KMS Application
Data Sheet
Download Now
ARIA SDS microHSM Secure Key Management and Crypto Offload
News
ARIA Cybersecurity Solutions, a CSPi business (NASDAQ: CSPi) announces its ARIA Zero Trust Gateway, a next-generation network security solution focused on automated 100G Network…
Myricom ARC-C TxO provides network intrusion protection and cyberattack prevention with a unidirectional network traffic gateway solution.
Achieves deployment of advanced cybersecurity applications leveraging the NVIDIA BlueField-2 DPU
Blog
Events
Contact Us to Speak to a Cybersecurity Expert!
Resources and Related Content
Resources
Modern HSM for Enterprise-wide Data Encryption in the Healthcare Industry
Healthcare organizations are notoriously vulnerable to network-borne cyberattacks, including ransomware, malware, and data exfiltration. These attacks are becoming more frequent, increasingly sophisticated, and nearly impossible to detect.
Data Sheet
Download Now
ARIA SDS KMS Application
Data Sheet
Download Now
ARIA SDS microHSM Secure Key Management and Crypto Offload
Blog
News
ARIA Cybersecurity Solutions, a CSPi business (NASDAQ: CSPi) announces its ARIA Zero Trust Gateway, a next-generation network security solution focused on automated 100G Network…
Myricom ARC-C TxO provides network intrusion protection and cyberattack prevention with a unidirectional network traffic gateway solution.
Achieves deployment of advanced cybersecurity applications leveraging the NVIDIA BlueField-2 DPU
Events
Encrypt VMware Environments in Four Easy Steps
Automatic management, generation, and distribution of encryption keys.