An Hardware Security Module (HSM) is a physical device that provides secure and efficient implementations of cryptographic operations over one or more well-defined external interface(s). The cryptographic functions of the HSM are used to protect VS-NfD classified data.

An HSM has self-sufficient security mechanisms to protect against physical and logical attacks, whereby security-relevant parameters, data, keys and security-critical functional components themselves are protected with regard to integrity/authenticity and confidentiality. In particular, an HSM has hardware protection that also protects security-relevant data and especially cryptographic keys against physical attacks. The HSM reacts actively to attacks, for example by actively deleting certain keys in the event of an alarm (it is "tamper responsive"). These security mechanisms must also be effective without an external power supply and must be independent of the device being switched on or off.

The CI requirements profile listed here is classified as "VS-NUR FÜR DEN DIENSTGEBRAUCH" and is therefore only available to parties that can prove a corresponding need-to-know in accordance with the General Administrative Provision for the Material Protection of Classified Information (VSA--Verschlusssachenanweisung). If you are interested in the document please contact: vs-anforderungsprofile@bsi.bund.de