Ross Systems International Ltd. home up ABOUT US SERVICES CONTACT US NEWS

Passionate About Tandem

  Ross Systems International Limited

                    Tandem/HP NonStopTM Development & Test Solutions
 

 

HSEMM

HSM EMULATOR AND CRYPTOGRAPHICALLY ENABLED TEST SUITE

Problems with Security Projects using HSMs

bullet

Quality requires transparency BUT Host Security Modules require secrecy

bullet

Transparency means it is possible to visibly demonstrate every step of the process.

bullet

It is possible to solve this dilemma if we realize that HSM usage can be divided into two phases:

bullet

Research and Development (Transparent) – Production (Secret)

bullet

This can be achieved if we implement the following usage scenario:

bullet

HSM Emulator for Research and Development AND the real HSM for Production

HSEMM is a Cryptographically enabled HSM Emulator for HP NonStop Computers

Key Benefits

bullet

HSM Specification is verifiably correct since iterative development is possible

bullet

HSM can be thoroughly tested by parallel running with the Emulator

bullet

Application code can be tested as soon as it is written

bullet

HSM specification is 100% correct first time, no misunderstandings no delays

bullet

HSM firmware coding is normally in C, so the emulator code is in C; there is virtually no effort for the firmware developers, so there is a faster turnaround

bullet

HSM Test is very fast because it can be fully automated

bullet

HSMs are not available to the test teams, so no master keys compromised

bullet

You know that it will be right first time because you can prototype

Features

bullet

Emulation of a variety of HSMs and Firmware, this can be switched by console command.

bullet

Range of Standard Host and Console Commands available

bullet

Bespoke commands can be implemented in days

bullet

Host Interfaces. Multithreaded IP (TCP & UDP) and $RECEIVE available

bullet

Loadable Master Key and HSM Configuration Files

bullet

Large Cryptographic Library

bullet

Full Cryptographic Trace available as standard, with tools for real time capture.

bullet

Console Terminal Emulator Programs for: UDP/IP and $RECEIVE.

bullet

Host Command Scripted Driver Programs for: TCP/IP and $RECEIVE

Design Notes

If you want to know more and how the various components of CATs are assembled

See HSEMM Design Notes by Rupert Stanley. PDF File

Note

Developing your own HSM solutions can be difficult because of key attacks, but this is not advanced Cryptography, once you know how.

See Understanding Security APIs by Michael K Bond. PDF File

 

Contact: info@rsi-ns.com Tel: +44(0)1206-392923             Copyright © 2006 Ross Systems International Ltd.