Manage hardware security modules that you use in the cloud.

Azure Dedicated HSM (Hardware Security Module) is a service that offers dedicated, physical HSMs to manage cryptographic keys securely. It ensures high levels of data protection and compliance with regulatory standards, making it ideal for organizations with stringent security requirements.

• Maintain full administrative and cryptographic control of your HSMs
• Validated for FIPS 140-2 Level 3 and eIDAS Common Criteria EAL4+
• Migrate HSM applications to Azure with minimal changes and improved latency

Features

• **Manage HSMs that you use in Azure: **With Azure Dedicated HSM, you manage who in your organization can access your HSMs and the scope and assignment of their roles. You have full administrative and cryptographic control over your HSMs. Microsoft has no access to or visibility into the keys stored in them.
• **Enhance security and compliance with controls and certifications: **Each HSM device comes validated against FIPS 140-2 Level 3 and eIDAS Common Criteria EAL4+, ensuring tamper resistance. This enables you to meet a wide variety of security and compliance requirements.
• **Easily migrate applications to Azure: **Developed in partnership with Thales, the Thales Luna 7 HSM model A790 cloud-based HSM is compatible with many applications, simplifying migration of legacy or custom on-premises applications to Azure. Because minimal changes are needed for your on-premises applications to work in Azure, you save time. Hybrid capabilities allow you to run your legacy or custom applications on your on-premises Thales HSM or on Azure. Keep a copy of your keys on the Thales HSM for added security.