AWS CloudHSM is a cloud-based hardware security module (HSM) that enables you to easily generate and use your own encryption keys on the AWS Cloud. With CloudHSM, you can manage your own encryption keys using FIPS 140-2 Level 3 validated HSMs. CloudHSM offers you the flexibility to integrate with your applications using industry-standard APIs, such as PKCS#11, Java Cryptography Extensions (JCE), and Microsoft CryptoNG (CNG) libraries.
CloudHSM is standards-compliant and enables you to export all of your keys to most other commercially-available HSMs, subject to your configurations. It is a fully-managed service that automates time-consuming administrative tasks for you, such as hardware provisioning, software patching, high-availability, and backups. CloudHSM also enables you to scale quickly by adding and removing HSM capacity on-demand, with no up-front costs.
AWS Key Management Service (AWS KMS) is a managed service that makes it easy for you to create and control the encryption keys used to encrypt your data. The customer master keys that you create in AWS KMS are protected by hardware security modules (HSMs).
AWS CloudHSM is ranked 5th in General Purpose HSM while AWS Key Management Service is ranked 9th in General Purpose HSM. AWS CloudHSM is rated 0.0, while AWS Key Management Service is rated 0.0. On the other hand, AWS CloudHSM is most compared with Thales SafeNet Luna HSM, nCipher nShield General Purpose HSM, Yubico YubiHSM and Azure Dedicated HSM, whereas AWS Key Management Service is most compared with Unbound Key Control.
See our list of best General Purpose HSM vendors.
We monitor all General Purpose HSM reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.