Secret Server can be configured to use a SafeNet HSM (or paired HSMs for failover) during installation. The HSM is a hardware device which will handle the encryption/decryption in hardware. As the encryption keys are stored within the hardware device itself (and never leave the device), use of a HSM increases the security of the encrypted data. SafeNet HSMs are FIPS 140-2 certified and are most typically used by government and military customers.
Secret Server does not require a HSM to function but it is available as an option for environments that require the highest levels of security.
If you choose to deploy Secret Server with a SafeNet HSM then please notify your Account Manager so they can provide pricing which includes the HSM hardware.
Next Feature: Security Hardening Report >