We help IT Professionals succeed at work.

HSM open source or cheap

lnrivera asked

Are there any cheap or open source HSM solution (For example by software or by virtual appliance) to manage a few digital signatures in one centralized storage?

Watch Question

Exec Consultant
Distinguished Expert 2019
You could use SoftHSM, which is a pure-software PKCS #11 implementation. It is being used by the OpenDNSSEC project precisely to be swapped out in cases a real HSM is not available, so it might work for you too. However, it's BSD licensed, so if you are into
Windows, that can be not enticing.
If you are looking for low-cost and yet commmercial developing or identifying application to use the Win32 CryptoAPI seems another viable lookout. RSA's toolkits are not cheap, in my experience. There can be the TPM chip found in most laptop that can explore but it is tougher to get application talking the api interface to them due to quite fair bit of undrstanding what is and how to leverage TPM.

I was even thinking smartcard as a hsm....