2024-08-06
Welcome to KEYMASTERS!
In this session, Sven Rajala and Jiannis Papadakis discuss managing multi-tenancy with HSMs (Hardware Security Modules) in a multi-tenant PKI (Public Key Infrastructure). The primary focus is on handling multiple Certificate Authorities (CAs) within an HSM and ensuring security and performance.
Sven begins by posing questions about key management within the HSM, including whether to use single or multiple partitions or HSMs. Jiannis confirms that modern PKI setups involve numerous CAs and use cases, necessitating robust multi-tenant PKI software.
For effective multi-tenancy, it is essential to use HSMs to store sensitive key material securely. This involves creating dedicated security partitions or slots within the HSM. Different vendors have their multi-tenancy concepts, often involving high-performance, net-attached HSMs.
Sven and Jiannis emphasize the importance of isolating key material within secure environments, which isn't feasible with USB HSMs or smart cards due to their limited performance and lack of partitioning capabilities. High-performance HSMs are designed to handle multiple keys and high throughput for cryptographic operations, essential for maintaining PKI efficiency.
The discussion also covers the performance impact of multi-tenancy, noting that hosting multiple CA keys within a single HSM can affect signing operation throughput. Therefore, designing the PKI infrastructure must consider these performance implications.
Key replication is another critical aspect discussed. Jiannis explains the need for a plan to ensure key availability and replication within multi-tenant environments, typically involving the same vendor's HSMs. HSMs are designed to prevent key material from leaving their secure environment and HSM vendors’ solutions are typically not compatible.
Replication can be addressed at two levels: replicating the entire HSM content or specific tenants. The ability to replicate single tenants is crucial, particularly for HSM as a Service (HSMaaS) offerings, where multiple clients may share the same HSM infrastructure.
The conversation highlights the importance of using high-performance, net-attached HSMs for secure and efficient multi-tenancy in modern PKI environments. Proper planning for key isolation, performance, and replication is essential to ensure the security and functionality of the PKI.
Blog - The Role of HSMs in PKI and Signing Solutions