让-菲利普·奥马松与谢尔温·马杰里_加强银行级加密钱包的硬件安全模块.pdf

1、Hardening HSMs for Hardening HSMs for BankingBanking-Grade Crypto WalletsGrade Crypto WalletsBlack Hat 2024Black Hat 2024JP Aumasson,Chervine MajeriJP Aumasson,Chervine MajeriWhoisWhoisJP Taurus co-founder&CSO First BHUS talk was in 2013 Chervine Taurus lead research engineer First BHUS talk is nowC

2、rypto asset custody&issuance for banks()regulated and running a marketplace for tokenized assets(t-)In Geneva,Zurich,London,Paris,Vancouver,DubaiOutlineOutline1.What is really an HSM?2.Security and crypto internals3.Attack surface and hardening4.Best practices&a note on cloud HSMsDisclaimer:This tal

3、k is based on our experience over 7 years with 3 HSM models,deployed in production in multiple environments.YMMV.Hardware security module(HSM)Hardware security module(HSM)“A dedicated crypto processor that is specifically designed for the protection of the crypto key lifecycle”(HSM vendor)Enterprise

4、/cloud HSMs usually 1RU or PCIE card form factorThe actual HSM is the module in the appliance/cardHSM purposeHSM purposeStore secretkeysfor crypto operations:Signature,decryption,symmetric encryption,MACHigh-assurance domain thanks to isolation&anti-tamperingProtect keys in case of servers/workstati

5、ons compromiseHSM use case examplesHSM use case examples Blockchain transaction signing and TEE Code signing(HSM mandatory for MS Win apps)Database encryption/decryption(usually via KEKs)PKI root of trust(for CAs,enterprise PKIs,etc.)https:/ interfacesHSM interfacesCrypto interface over PCIe or USB,

6、TCP/IP if network-attachedAdmin interface over serial port,SSH,HTTP/REST+TLS,GUISecurity mechanisms(1/4)Security mechanisms(1/4)Local isolation(slots aka partitions)Security mechanisms(2/4)Security mechanisms(2/4)Local isolation(slots aka partitions)RBAC,ABAC-ishmodel(with per-slot roles)Security me