Support of Hardware Security Modules (HSM) with Siebel CRM Planned Features / Statement of Direction
(Doc ID 1249174.1)
Last updated on NOVEMBER 08, 2019
Applies to:Siebel CRM
Information in this document applies to any platform.
Hardware Security Modules (HSM) are physical tamper-resistant devices attached to the internal IT network which can be used to store private or public encryption keys in a secure manner. Because they offer both storage and encryption/de-encryption at the hardware level, they are generally deemed more secure than the equivalent algorithms that function in an application software stack such as Siebel CRM. Some vendors also offer security certification and RSA key pair management. The devices can range in size from a secure USB memory stick or PCMCIA card right up to an enterprise-class server device attached to the internal Ethernet network.
Most HSM devices on the market today support the PKCS #11 protocol established by RSA, Inc., and this provides the most convenient way in which to interface to such devices. They are also usually certified to NIST FIPS 140-2 level.
HSM Support with Siebel CRM
As a result of the increasing focus and interest in security among the Siebel customer base, Siebel CRM intends to provide support for HSM devices. These would be used to store and retrieve the following types of keys:
- Private keys for encrypting/de-encrypting field-level individual secure fields, such as are supported in Siebel CRM for storing customer credit card information.
- Private keys for encrypting/de-encrypting SSL communications.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document
|HSM Support with Siebel CRM|