Now that we have covered what HSMs are and what features they offer, let’s take a look at the different types of HSMs!
There are two main types of HSM modules: Payment HSMs designed for payment and transaction purposes and general purpose HSMs to generate, store and manage keys; encrypt and decrypt data, and create and verify digital signatures.
HSM modules can be used on-premise and remotely. Most of the significant cloud providers offer cloud-based HSM services that enable organizations to generate and use their own encryption keys in the cloud infrastructure. While this way has its own advantages, there might be performance issues and latency issues. With proper support, it is easier and safer to maintain your own solution.
Some HSM modules offer special features that can be utilized by QTSPs. For example, the Trident HSM meets the requirements of eIDAS, the regulation of the European Parliament and the Council that specifies the conditions and requirements for electronic identification and trust services for electronic transactions in the internal market. This means that QTSPs can run their qualified electronic signatures based on the Trident HSM.