Kryptoagile understands that cryptographic infrastructures need data encryption and security to be capable of scaling along with organizational development.There fore, Excrypt System Security Processor (SSP) Series offers complete and robust security at industry-leading transaction speeds, including a wide array of functionality to form a comprehensive and easy-to-use solution. This robust machine is exclusively designed for the fastest payment transactions.
The Excrypt SSP9000 HSM module builds upon Futurex’s legacy of offering proven encryption technology with features designed to take organizations into the future with confidence. Futurex commits to developing and implementing HSM devices that are industry compliant, innovative, and effective for your security needs. The Excrypt SSP9000 HSM unit’s enhanced scalability and capability to integrate with other Hardened Enterprise Security Platform solutions, including the Guardian9000 and the Securus, ensures your organization will always have the capacity it needs.
The Excrypt SSP9000 communicates using the Futurex Excrypt Universal Interface (UI), an intuitive and easily integrated API, supported by major host application software products sold around the world. This allows standardization between various HSM devices across all major platforms.
Integration with the Futurex Guardian9000 HSM’s centralized management platform allows an organization to combine the processing power of multiple HSM units into a single transaction processing entity. Users can easily create true active-active disaster recovery environments with monitoring available via SMTP, SNMP, and SMS.
The Excrypt SSP9000 HSM device works seamlessly with the Securus — Futurex’s portable, FIPS 140-2 Level 3-validated remote management and configuration device. The Securus touchscreen tablet eliminates the need for organizations to spend time and money traveling to perform routine maintenance, encryption key loading operations, and firmware updates, with configuration able to occur virtually anywhere in the world. A public key infrastructure (PKI) enables a secure, mutually authenticated connection between the end user and the Excrypt SSP9000 HSM unit.
Futurex maintains a policy of supporting all current and emerging regulatory standards on the EXP9000 cryptographic module. The device meets and adheres to Payment Card Industry (PCI) per data security standard, FIPS 140-2 Level 3, ANSI X9.24 part 1 and part 2—TR-39, and PCI HSM.
The Excrypt SSP9000 HSM supports numerous cryptographic algorithms and APIs for both payment processing services and general purpose data encryption. These algorithms and APIs include Data Encryption Standard (DES), Triple-DES, Master/Session, AES, RSA, and PKCS #11.
By default, the Excrypt SSP9000 HSM includes the easy-to-use Excrypt Manager. Through this GUI-based application, all settings may be configured, and the intuitive design cuts training and administrative costs through its easily comprehensible format.
The Excrypt SSP9000 HSM contains dual, hot-swappable power supplies, allowing for redundancy in both physical hardware and power source if an organization wishes to use two separate circuits. The Excrypt SSP9000 hardware security module contains dual ethernet ports, adding another layer of hardware redundancy.
Key components require secure storage. Organizations have typically used paper-based methods to record components, but Futurex’s support of smart card-based key loading removes that requirement. It facilitates the user to experience the robust cryptographic key management.
Maintaining accurate and complete logs is a critical element of an IT ecosystem, which should be designed according to data privacy compliance. The Excrypt SSP9000 HSM outputs log files directly to an external syslog server, simplifying troubleshooting, development, and auditing.
Through the Excrypt SSP9000’s M-of-N key fragmentation functionality, loading encryption keys is simple and convenient. Organizations can define several required key officers for a key ceremony that is less than the total number of key officers, allowing enterprises to maintain security while dramatically reducing the inconvenience of coordinating busy schedules around key ceremonies.
The ExcryptHSM SSP9000 contains the Futurex EXP9000, the world’s fastest payment transaction cryptographic HSM module, which operates at up to 2,250 TPS. The Excrypt SSP9000 hardware security module complies with FIPS 140-2 Level 3 requirements and includes the following physical security features:
The Excrypt HSM SSP9000 supports functionality modules for organizations seeking to use their HSM for specific tasks. Establishing an ATM remote key loading (RKL) environment is simple with the Excrypt SSP9000’s RSA and PKI functionality, which allows direct management of the key lifecycle for ATMs through compatible host software. Functionality for EMV (smart cards) 4.0/4.2/4.3 is available for organizations that require EMV transaction validation or card issuance functionality, and the Excrypt SSP9000 hardware security module also supports Point-to-Point Encryption (P2PE) using industry-standard DUKPT data encrypt, decrypt, and translate functionality.
