Paul_IPv6 on Nostr: <rant> sigh... HSMs (hardware security modules) are a pretty specialized need, ...
<rant>
sigh...
HSMs (hardware security modules) are a pretty specialized need, presumably places with regulatory requirements for securing crypto keys, like for DNSSEC for TLDs, etc.
google cloud HSM is just an abomination. it's exactly the opposite of what you're supposed want an HSM for.
if you're trusting some 3rd party service from a major cloud provider to give you a software service equivalent of a black box, you shouldn't be calling it an HSM.
call it a password safe if you must but it's not hardware and it's not the best security.
</rant>
sigh...
HSMs (hardware security modules) are a pretty specialized need, presumably places with regulatory requirements for securing crypto keys, like for DNSSEC for TLDs, etc.
google cloud HSM is just an abomination. it's exactly the opposite of what you're supposed want an HSM for.
if you're trusting some 3rd party service from a major cloud provider to give you a software service equivalent of a black box, you shouldn't be calling it an HSM.
call it a password safe if you must but it's not hardware and it's not the best security.
</rant>