We’re very excited to announce the overall availability of Azure Cost HSM, a BareMetal Infrastructure as a service (IaaS) that allows prospects to have native entry to fee HSM within the Azure cloud. With Azure Cost HSM, prospects can seamlessly migrate PCI workloads to Azure and meet essentially the most stringent safety, audit compliance, low latency, and high-performance necessities wanted by the Cost Card Trade (PCI).
Azure Cost HSM service empowers service suppliers and monetary establishments to speed up their fee system’s digital transformation technique and undertake the general public cloud.
Azure Cost HSM answer is delivered utilizing Thales payShield 10K Cost HSM, which presents single-tenant HSMs and full distant administration capabilities. The service is designed to allow complete buyer management with strict function and knowledge separation between Microsoft and the shopper. HSMs are provisioned and linked on to the shopper’s digital community, and the HSMs are beneath the shopper’s sole administration management. As soon as allotted, Microsoft’s administrative entry is proscribed to “Operator” mode and full accountability for configuration and upkeep of the HSM and software program falls upon the shopper. When the HSM is not required and the system is returned to Microsoft, buyer knowledge is erased to make sure privateness and safety. The answer comes with Thales payShield premium bundle license and enhanced help Plan, with a direct relationship between the shopper and Thales.
Determine 1: After HSM is provisioned, HSM system is linked on to a buyer’s digital community with full distant HSM administration capabilities by way of Thales payShield Supervisor and TMD.
The shopper can rapidly add extra HSM capability on demand and subscribe to the best efficiency stage (as much as 2500 CPS) for mission-critical fee functions with low latency. The shopper can improve, or downgrade HSM efficiency stage primarily based on enterprise wants with out interruption of HSM manufacturing utilization. HSMs will be simply provisioned as a pair of gadgets and configured for top availability.
Azure stays dedicated to serving to prospects obtain compliance with the Cost Card Trade’s main compliance certifications. Azure Cost HSM is licensed throughout stringent safety and compliance necessities established by the PCI Safety Requirements Council (PCI SSC) together with PCI DSS, PCI 3DS, and PCI PIN. Thales payShield 10K HSMs are licensed to FIPS 140-2 Degree 3 and PCI HSM v3. Azure Cost HSM prospects can considerably cut back their compliance time, efforts, and value by leveraging the shared accountability matrix from Azure’s PCI Attestation of Compliance (AOC).
Typical use instances
Monetary establishments and repair suppliers within the fee ecosystem together with issuers, service suppliers, acquirers, processors, and fee networks will profit from Azure Cost HSM. Azure Cost HSM allows a variety of use instances, equivalent to fee processing, which permits card and cellular fee authorization and 3D-Safe authentication; fee credential issuing for playing cards, wearables, and linked gadgets; securing keys and authentication knowledge and delicate knowledge safety for point-to-point encryption, safety tokenization, and EMV fee tokenization.
Azure Cost HSM is accessible at launch within the following areas: East US, West US, South Central US, Central US, North Europe, and West Europe
As Azure Cost HSM is a specialised service, prospects ought to ask their Microsoft account supervisor and CSA to ship the request by way of e-mail.
Be taught extra about Azure Cost HSM
To obtain PCI certification stories and shared accountability matrices: