The CodeSafe software developer toolkit provides the capability to create and execute sensitive applications within the protected perimeter of a FIPS 140-2 Level 3 certified nShield hardware security module (HSM).
CodeSafe can be used to execute any type of application within the tamper-resistant nShield HSM. Examples include cryptography and business logic associated with banking, smart metering, authentication agents, digital signature agents and custom encryption processes.
Because your sensitive applications execute within the HSM’s secure boundary, and not on an exposed host server, they are safeguarded against both internal and external threats.
CodeSafe creates a strong binding between cryptographic processes and the keys they use, ensuring that keys and data can only be used by authorized and immutable applications.
CodeSafe encompasses two components: a developer toolkit to compile applications and prepare them to be imported into the HSMs, and a run time environment that protects the application when in use. CodeSafe not only carves out a segregated and protected space for security-sensitive applications to be executed, but it also creates a strong binding between the cryptographic processes and the keys they use.
nShield HSM Compatibility
CodeSafe is available with all FIPS 140-2 Level 3 certified nShield Solo PCIe and network-attached nShield Connect HSMs.
Operating System Support
CodeSafe development supported on Windows and RHEL Operating Systems
- Deployment also supported on AIX, HP-UX, and Solaris platforms
HSM Development Environment
CodeSafe is compatible with the following programming applications:
- C and C++ programming languages for embedded applications
- C, C++ and Java on host-server
Data Sheet: CodeSafe
The nCipher CodeSafe developer toolkit provides the capability to create and execute sensitive applications within the protected perimeter of a FIPS 140-2 Level 3 certified nShield hardware security module (HSM)Download
This white paper describes the unique nCipher CodeSafe capability, which enables application code to run within the protected confines of a tamper-resistant nShield Hardware Security Module (HSM). CodeSafe enables users to develop application code to run inside the HSM, providing protection against Advanced Persistent Threats (APTs) as well as insider attacks and hacking.Download
Data Sheet: nShield Connect HSMs
nShield Connect HSMs are certified, networked appliances that deliver cryptographic key services to applications distributed across servers and virtual machines.Download
Data Sheet: nShield Solo HSMs
nShield Solo HSMs are certified PCIe card-based solutions that deliver cryptographic key services to applications hosted on individual servers and appliances.Download
Data Sheet: nShield as a Service
Subscription-based access to dedicated nShield Connect HSMs, enabling cloud-centric strategies while maintaining the strict security controls required for business-critical applications.Download
As a global payment solutions and commerce enablement leader, Verifone’s strategy is to develop and deploy “best in class” payment solutions and services that meet or exceed global security standards and help our clients securely accept electronic payments across all channels of commerce. We selected nCipher HSMs to provide robust security, unmatched performance and superior scalability across our payment security platforms, protecting encryption keys from virtually any attack. This helps Verifone to continue reducing merchants’ growing exposure to data breaches and cyber criminals and more aggressively safeguard consumer information…Joe Majka,Chief Security Officer