KB_110018: Thales Websentry™ HSM does not support AES algorithms10/31/2007 11:02:06 AM
Thales Websentry™ HSM does not support AES algorithms
Thales Websenty™ HSM
A HSM (Hardware Security Module or Host Security Module) is a plug-in card, external device or embedded system whose function is to securely generate and/or store long term secrets for use in cryptography and physically protect the access to and use of those secrets over time.
The Thales Websentry™ HSM has DES and 3DES cryptographic functions but does not have AES cryptographic functions.
The latest generation of Vasco Digipasses can use multiple encryption algorithms like DES, 3DES or AES. However some models can only use one type of encryption, AES.
These Digipasses are:
These Digipasses cannot be used in conjunction with a Thales Websentry™ HSM. Other Digipasses can be used as long as the AES algorithm is not used.
There is no workaround available for this issue. This is a limitation of the HSM.
Thales is examining the implementation of the AES algorithm for future releases but it will not be available in short term.
Applies to: Vacman Controller for HSM & Thales Websentry™ HSM
KB 110018.doc (1.0) – 5/11/2007 14:19
© 2007 VASCO Data Security. All rights reserved.