AWS CloudHSM Documentation

AWS CloudHSM is a cloud-based hardware security module (HSM) that allows you to add key storage and crypto operations to your AWS applications.

Security

AWS CloudHSM helps you manage your keys on FIPS validated hardware, protected with customer-owned, single-tenant HSM instances running in your own Virtual Private Cloud (VPC).

Performance

AWS CloudHSM helps you meet performance requirements of your applications through elasticity, adding or removing HSM instances while achieving latency and reliability goals.

Availability

AWS CloudHSM helps you load balance requests and replicate keys across HSM instances in your cluster.

Flexibility

AWS CloudHSM helps you deploy a solution that supports a range of cryptographic algorithms.  

Additional Information

For additional information about service controls, security features and functionalities, including, as applicable, information about storing, retrieving, modifying, restricting, and deleting data, please see https://docs.aws.amazon.com/index.html. This additional information does not form part of the Documentation for purposes of the AWS Customer Agreement available at http://aws.amazon.com/agreement, or other agreement between you and AWS governing your use of AWS’s services.