<img alt="" src="https://secure.weed6tape.com/193471.png" style="display:none;">
Join our webinar to discover the Primus HSM CyberVault Series and how it supports your PQC transition | April 10, 2025

Sign up
Products & Solutions
Products & Solutions
Explore our portfolio of cutting-edge cybersecurity solutions, centered around our flagship Hardware Security Modules (HSMs). From encryption and key management to secure access and authentication, our products ensure robust protection for your most critical data and systems.
menu icon
Hardware Security Module (HSM)
HSM Overview What is an HSM? Primus HSM CyberVault (X2 Models) Primus HSM CyberVault Core (E2 Model) Primus HSM X-Series Primus HSM E-Series Primus HSM S-Series Primus HSM Blockchain Post-Quantum Cryptography HSM
menu icon
Cloud Security
Securosys CloudHSM Cloud Console What is CloudHSM? CloudHSM Service Offerings Integrated Technologies HashiCorp Vault S365 DKE - add-in for Microsoft 365 Bring Your Own Key (BYOK) External Key Store (XKS) Proxy for AWS Fortinet Fortigate Keyfactor EJBCA/SignServer
menu icon
Additional Products and Services
Decanus Terminal Transaction Security Broker (TSB) Key Attestation Smart Key Attributes (SKA) Docker Image Security
Partners
Partners
shield-people-colourful
Partners
Partner Directory
digital-data-finance-security-transactions-2
Integrations
Integrated Technologies HashiCorp Vault Fortinet FortiGate S365 DKE - adds in for Microsoft Bring Your Own Key (BYOK) External Key Store (XKS) - Proxy for AWS Keyfactor EJBCA/SignServer
Support
Support
menu icon
Support
Online Documentation Support Portal System Status Trainings
finance-institution-colourful
What is ...?
What is an HSM? What is CloudHSM? What is BYOK? What is SIC system?
About
About
Learn more about our mission, explore career opportunities, and access our resources. Discover how we’re shaping the future of cybersecurity and how you can be part of it.
menu icon
Securosys SA
About Us Events News Career
menu icon
Resources
Online Documentation Blog Articles Stories and Paper Video Gallery
document-lock-b&w
Certifications
Security Certifications Safety & Compliance Certifications Company Certification
Contact us
  • There are no suggestions because the search field is empty.

Challenge

For some enterprises, securing sensitive cryptographic keys and executing critical security functions requires an HSM that meets the highest security standards while aligning with their operational needs. Traditional enterprise-grade HSMs often come with significant costs and infrastructure requirements, making them difficult to implement for organizations with budget constraints.

Many enterprises also struggle with the complexity of integrating HSMs into their existing infrastructure, managing cryptographic operations efficiently, and ensuring seamless scalability. Finding a solution that delivers uncompromising security, high performance, and adaptability is essential

 

Solution

Solution

The Securosys Primus HSM CyberVault Core (E2-Series) addresses these challenges with an enterprise-grade security solution that combines high performance, cost efficiency, and ease of use. It provides a standalone network appliance design that eliminates PCIe-based limitations, a high-performance cryptographic engine with scalable in-field upgrades, comprehensive support for industry-standard APIs to ensure seamless integration, advanced security measures including active tamper and transport protection, and secure remote management capabilities for streamlined administration.

Solution

Key Benefits

API-circle-b&w
Seamless Integration
Offers broad compatibility through fully documented APIs, including PKCS#11, CNG/KSP,Java, and REST. It features two dedicated partitions, each with 120MB storage space, ensuring secure, parallel access for multiple applications within any network environment.
shield-b&w
Optical Interface for High-Speed Connectivity
For enhanced networking flexibility, the CyberVault Core offers an optional optical interface with speeds of up to 10 Gbps, ensuring high-speed cryptographic operations in demanding environments.
locket-circle-blocks-b&w
Rapid Deployment & Low Maintenance
Quick setup with an intuitive wizard, reducing installation time, complexity, and maintenance efforts.
decanus-b&w+red
Secure & Efficient Remote Management
Decanus enables secure remote administration of HSMs andpartitions, reducing operational effort.
vault-b&w
Advanced Tamper & Transport Protection
Exceeds FIPS and Common Criteria standards with active tamper sensors, protecting even when unpowered.
Key Differentiators
Primus-HSM-E2-face-top-view

Unbeatable Price/ Performance ratio

The CyberVault Core delivers full network appliance functionality at a PCIe card price level, eliminating embedded HSM limitations.

Comprehensive Cryptographic Support

Supports RSA, ECC, EdDSA, and optionally supports all NIST-selected post-quantum cryptographic algorithms, including ML-DSA, SLH-DSA, ML-KEM,HSS-LMS, and XMSS, ensuring future-proof encryption.

Swiss Made

Crafted entirely in Switzerland, Securosys Primus CyberVault Core embodies unmatched quality and reliability. Free from external influences, our Swiss-made HSMs guarantee the highest standards from development to production, ensuring unparalleled security solutions.

Technical Specifications

01
Security Features
02
Networking Features
03
Technical Data
01
Security Features
Security Architecture
  • Multi-barrier software and hardware architecture with supervision mechanisms
  • Secure supply-chain 
Encryption / Authentication (extract)
  • Post-Quantum Cryptographic (PQC) algorithms (optional)
    ML-DSA, SLH-DSA, ML-KEM, HSS-LMS, XMSS 
  • RSA 1024-8192, DSA 1024-8192 
  • ECDSA 224-521, GF(P) arbitrary curves (NIST, Brainpool, ...) 
  • ED25519, Curve25519 
  • Diffie-Hellman 1024, 2048, 4096, ECDH 
  • SHA-3/SHA-2 (224 - 512), SHA-1, RIPEMED-160, Keccak 
  • HMAC, CMAC, GMAC, Poly 1305 
  • 128/192/256-Bit AES with GCM-, CTR-, ECB-, CBC-, MAC Mode 
  • Camellia, ChaCha20-Poly1305, ECIES 
Key Generation
  • Two hardware true random number generators (TNRG)
  • NIST SP800-90 compatible random number generator
Key Management
  • 2 partitions and 240MB total storage, fixed 
Operation
  • Number of client connections not restricted
  • Unlimited number of backups
Anti-Tamper Mechanisms
  • Several sensors to detect unauthorized access
  • Active destruction of key material and sensitive data on tamper
  • Transport and multi-year storage tamper protection by digital seal
Attestation and Audit Features
  • Cryptographic evidence of audit relevant parameters (keys, configuration, hardware, states, logs, time-stamping)
Identity-based Authentication
  • Multiple security officers (m out of n)
  • Identification based on smart card and PIN
02
Networking Features
03
Technical Data