Custody & Safeguarding
Hardware Security Module (HSM)
Physical device generating, storing, and using cryptographic keys in a tamper-resistant environment.
Definition
An HSM is a physical computing device that safeguards and manages cryptographic keys, performing encryption/decryption inside its tamper-resistant boundary. CASPs use HSMs to protect master keys, signing keys, and other sensitive cryptographic material.