Entrust has announced that its latest generation of hardware security modules (HSMs), the nShield 5, has achieved the Federal Information Processing Standards (FIPS) 140-3 certification. This certification from the National Institute of Standards and Technology (NIST) is the latest in U.S. government computer security standards, validating the robust cryptographic capabilities of Entrust’s cutting-edge HSMs.
With the FIPS 140-3 Level 3 validation, Entrust nShield 5 HSMs stand among a select few that meet the stringent data security requirements demanded by governments, financial institutions, and enterprises worldwide. Featuring an innovative container-based architecture and a crypto-agile programmable security processor, the nShield 5 HSMs deliver up to 40% more performance compared to previous versions. This makes them an ideal solution for today’s high-security environments where data protection is paramount.
Earlier this year, Entrust’s nShield 5 HSMs also achieved Common Criteria EAL4+ certification, confirming their compliance with the European Union’s rigorous eIDAS requirements. Combined with the newly attained FIPS 140-3 certification, these certifications position Entrust nShield 5 HSMs as a trusted choice for organisations seeking comprehensive global regulatory compliance.
“Achieving FIPS 140-3 certification is a critical milestone,” said Giuseppe Damiano, VP of Product Management at Entrust. “This certification provides our customers with a solid security foundation that meets their most demanding requirements today and future-proofs their investments for evolving cryptographic standards, including post-quantum algorithms.”
To achieve this certification, Entrust underwent extensive testing and analysis by an accredited, independent third-party laboratory. Jason Lawlor, President of Lightship Security, remarked on the significance of this achievement: “Having an HSM with FIPS 140-3 certification is essential for organisations aiming to secure their data now and in the future. We were thrilled to work with Entrust to help their customers stay compliant and secure.”
In a world where encryption methods continue to evolve, crypto agility has never been more crucial. The nShield 5 HSM’s programmable security processor, a field-programmable gate array (FPGA), allows organisations to adapt to new encryption standards without needing costly and time-consuming hardware upgrades. This feature is especially important as the industry prepares for the challenges posed by quantum computing, which could render current encryption techniques obsolete.
Carl Persson, Sales Director Encryption at Verisec International AB, a long-standing partner of Entrust, praised the certification: “Our customers demand the highest level of assurance for their cryptographic keys, and the Entrust nShield family, now validated to FIPS 140-3, meets those expectations. This achievement, alongside Common Criteria certification, enhances the security and compliance features that make Entrust a leader in the industry.”
Entrust’s nShield 5 HSMs are designed to integrate seamlessly with Entrust KeyControl, the company’s flagship enterprise key management service. KeyControl provides comprehensive visibility, traceability, compliance tracking, and an immutable audit trail for cryptographic assets such as keys and secrets. With nShield 5 HSMs serving as a root of trust, customers can ensure that their keys and secrets remain secure within authorised endpoints, supporting a wide range of cryptographic use cases.