CloudHSM

CloudHSM is a managed hardware security module service from Amazon Web Services. It provides dedicated cryptographic hardware in the AWS cloud to generate, store, and use keys in a secure environment. Keys remain within the HSM boundary, and cryptographic operations are performed inside the hardware, with key material never exposed to the host system.

The service offers standard interfaces such as PKCS#11, Java Cryptography Extension (JCE), and Microsoft Cryptographic API

CloudHSM supports clusters that span multiple Availability Zones for high availability and disaster recovery. Integrations with

Typical use cases include securing private keys for public key infrastructure (PKI), safeguarding TLS keys for