Monday, February 10, 2020

Device Authority, a global leader in Identity and Access Management (IAM) for the Internet of Things (IoT), today announced its latest solution for managing and protecting Hardware Security Modules (HSM).

Today, enterprise and cloud applications are given direct access to critical resources like HSMs. Although keys never leave the HSM itself, there is little emphasis on controlling the access. Often, the access policies are limited to vendor implementations, and the granular audit trail information is not always available where required. Virtual machines and containers can be cloned, and credentials can be stolen, which compromises access to the HSM. Additionally, it is usually not safe to grant IoT devices direct access to the HSM.

As a result of these security risks, organizations spend a lot of time and money to build their own custom access controls around the core HSM functionality to reduce security risk, standardize the integration process, and support the use case requirements.

Device Authority’s HSM Access Controller (HSMac) offers organizations an out-of-the-box solution which requires minimal effort from their internal teams. HSMAC delivers granular authentication, authorization and audit controls for IoT devices, servers, and applications to prevent unauthorized access to critical HSM infrastructure and mitigate security risks and liability exposure. The audit trails assist with compliance, while the overall increased security posture can help organization with cost savings derived from avoiding security breaches.

“The inception of the HSM Access Controller started with a customer requirement to prevent unauthorized access to their HSMs, and the demand for this solution continues to grow among medium and large Enterprises,” said Darron Antill, CEO of Device Authority.

The HSMac solution can also be offered in the HSM as a Service model to further solve the Enterprise IoT challenge that customers are facing for IoT use cases.

To learn more about HSMac, download the data sheet.


About Device Authority

Device Authority is a global leader in Identity and Access Management (IAM) for the Internet of Things (IoT); focused on medical / healthcare, industrial and smart connected devices. Our KeyScaler™ platform provides trust for IoT devices and the IoT ecosystem, to address the challenges of securing the Internet of Things. KeyScaler uses breakthrough technology including Dynamic Device Key Generation (DDKG) and PKI Signature+ that delivers unrivalled simplicity and trust to IoT devices. This solution delivers automated device provisioning, authentication, credential management and policy based end-to-end data security/encryption.

With offices in Fremont, California and Reading, UK, Device Authority partners with the leading IoT ecosystem providers, including AWS, DigiCert, Gemalto, HID Global, Microsoft, nCipher Security, PTC, Thales, Venafi, Wipro and more. Keep updated by visiting, following @DeviceAuthority and subscribing to our BrightTALK channel.