Azure Key Vault 物理 HSM
Azure Key Vault Physical HSM
我指的是下面的文档:
How to generate and transfer HSM-protected keys for Azure Key Vault
先决条件之一是:
Thales HSM、智能卡和支持软件
我的问题是我真的需要购买物理 HSM 才能使用 HSM 生成密钥吗?
不,您无需购买 HSM 即可获得 HSM 生成的密钥。 Key Vault API 公开了一个选项供您创建密钥。密钥创建发生在 HSM 内部。来自文档:
Create: Allows a client to create a key in Azure Key Vault. The value
of the key is generated by Azure Key Vault and stored and is not
released to the client. Asymmetric (and in the future, Elliptic Curve
and Symmetric) keys may be created in Azure Key Vault.
来源:https://msdn.microsoft.com/library/azure/dn903623.aspx#BKMK_KeyOperations
我指的是下面的文档:
How to generate and transfer HSM-protected keys for Azure Key Vault
先决条件之一是:
Thales HSM、智能卡和支持软件
我的问题是我真的需要购买物理 HSM 才能使用 HSM 生成密钥吗?
不,您无需购买 HSM 即可获得 HSM 生成的密钥。 Key Vault API 公开了一个选项供您创建密钥。密钥创建发生在 HSM 内部。来自文档:
Create: Allows a client to create a key in Azure Key Vault. The value of the key is generated by Azure Key Vault and stored and is not released to the client. Asymmetric (and in the future, Elliptic Curve and Symmetric) keys may be created in Azure Key Vault.
来源:https://msdn.microsoft.com/library/azure/dn903623.aspx#BKMK_KeyOperations