About Securosys
Securosys SA, headquartered in Zurich, Switzerland, is a leading Swiss technology company dedicated to securing data and communications via their Primus Hardware Security Modules (HSMs). Primus HSMs are designed, developed, and manufactured in Switzerland. To ensure maximum security, Securosys controls the entire supply chain, preventing any backdoors and ensuring complete transparency.
Primus HSMs are trusted by companies in all industry sectors and are essential to the financial world by protecting multi-billion payment transactions in the Swiss banking system and around the world every day.
Securosys operates one of the world's largest private HSM clouds, with clusters in Switzerland, Europe, the US, and Asia. Cloud customers enjoy the same benefits as on-premises clients, with competitive pricing that serves small SMEs and multinational conglomerates alike.
MTG integrates seamlessly with Primus HSMs, enhancing the MTG ERS® platform with unmatched capabilities as offered by Securosys.
Securosys Primus HSMs
Securosys HSM Overview (© Securosys SA)
Securing data, finances, identities, and reputation remains paramount in all Securosys activities.
Primus multipurpose HSMs cover a wide range of performance levels, from entry-level to the highest performance requirements in network HSMs, offering a performance-to-price ratio suitable for businesses of any size—whether in the cloud or on-premises.
Primus HSMs operate without the need for a separate management software; all functions are built into the HSM's firmware. Features include auto-synchronization and configuration across geo-redundant HSM clusters, hot-pluggable devices, independent partition management with audit capabilities, dedicated Security Officers per partition, high availability, backup, and more.
This comprehensive functionality ensures unparalleled efficiency in managing HSM infrastructure, with centralized management of distributed environments facilitated by the Decanus Terminal.
Securosys Decanus Terminal (© Securosys SA)
Primus X- und E-series HSMs are certified according to FIPS 140-2 Level 3, CC EAL4+ as well as eIDAS CC EN 419221-5. All Primus HSMs, incl. CyberVaults, are currently under (re-)certification according to FIPS 140-3 Level 3, CC EAL4+, CC EN 419221-5 (eIDAS) and CC EN 419241-2 Sole Control (SAM).
Find an overview of the security certifications here.
Securosys CloudHSM
Running a Hardware Security Module (HSM) demands substantial expertise, resources, and adherence to stringent security protocols. However, for many organizations, managing HSMs is not a core competency. This gap between the necessity for robust security measures and the available expertise poses a significant challenge.
Securosys CloudHSM offers a secure, efficient, and fully managed cloud-based key management solution. By outsourcing setup, maintenance, and updates to Securosys security experts, organizations can focus on their core business. The solution is built on a patented, proprietary hardware and software architecture without intermediaries, ensuring full control.
CloudHSM is available as a dedicated or shared multi-tenant service – regionally or globally – with clusters in Switzerland, Europe, North America, and the Asia-Pacific region. High availability is guaranteed through synchronized, low-latency HSM clusters.
Tailor your HSM or HSM-as-a-Service
- Market-Leading Performance and Scalability: From small businesses to enterprise-level cryptographic workloads, Securosys’ HSMs offer fixed, upgradeable, or extreme-speed performance handling up to 1 million transactions per second in clustered setups
- Hybrid PQC and Classical Cryptography: Securosys Primus HSMs ensure a smooth transition to post-quantum cryptography (PQC) by integrating hybrid signatures that combine classical algorithms (RSA, ECC/ED) with NIST-selected PQC algorithms (ML-DSA, SLH-DSA, ML-KEM, HSS-LMS, XMSS). Learn more about the PQC HSM from Securosys here.
- High-Capacity Key Storage: Enjoy leading-edge key storage capabilities starting at 10 MB in the cloud, extending up to 30 GB within the HSM itself for storing multi-million keys, with optional external storage.
- Multi-Tenancy Flexibility: Enable up to 1,000 flexible, independent partitions on a Primus CyberVault HSM. Each partition features dedicated security officers, APIs, customizable size configurations, logging, auditing, and individual Decanus Remote Terminal access.
- Cloud Deployment Options: Choose between standard or CC mode in cloud instances. Opt for regional or geo-redundant setups across multiple continents, ensuring clustered and continuous synchronization.
- User-Controlled Management: CloudHSM clients leverage Decanus for managing partition content autonomously, ensuring secure operations like backups and key invalidations directly by authorized users (2FA required), without Securosys access.
- Versatile Functionality: CloudHSM mirrors on-premises capabilities, supporting diverse applications such as Public Key Infrastructures (PKI), Key Management, Identity and Access Management (IAM), Privileged Access Management (PAM), Data Encryption, TLS Termination, Document Signing, Code Signing, IoT, SmartMetering, and Crypto Custody. This allows storage of numerous keys within the HSM while safely executing crypto algorithms internally.
Downloads & Links
For more information, please contact MTG. Additional details can also be found on the Securosys website: