Forum Discussion

netflow's avatar
netflow
Icon for Nimbostratus rankNimbostratus
Sep 04, 2021

List of supported HSMs

Is there a list of supported HSMs for F5 devices? I've seen the "standard" ones ( like Thales Luna) but what about USB based ones likes YubiHSM or Nitrokey HSM 2 or Yubikey HSM 2 or other network based like Nitrokey NetHSM ?

Will those work in general?

From this presentation https://www.f5.com/content/dam/f5/corp/global/pdf/agility/agility2018/BIG-IP-SSL-Capabilities.pdf on page 21 it seems at least there is a chance.

  • Hello Netflow.

    F5 BIG-IP supports the following Network HSM vendors:

    • Amazon CloudHSM
    • Equinix SmartKey HSM
    • SafeNet Data Protection on Demand (DPoD) HSM
    • Atos (Bull Trustway Proteccio) HSM

    REF - https://techdocs.f5.com/en-us/bigip-16-0-0/big-ip-system-and-net-hsm-implementation/setting-up-the-network-hsm.html

    Beside this, it also supports:

    • Safenet Luna
    • Ncipher HSM (old Thales)

    REF - https://techdocs.f5.com/en-us/bigip-16-0-0/big-ip-system-and-safenet-luna-sa-hsm-implementation/implementing-the-safenet-luna-hsm-with-big-ip-systems.html

    REF - https://techdocs.f5.com/en-us/bigip-16-0-0/big-ip-system-and-ncipher-hsm-implementation/setting-up-the-thales-hsm.html

    Regards,

    Dario.