Public ledger integration with HSMs (G12c)
HSMs are used extensively In manufacturing to protect the keys used to sign firmware and other artifacts meant for smart devices. Managing these signing operations to prevent private key misuse is a challenging process. One of the proposed methods to provide oversight and control is through the use of public ledgers, and a “proof of inclusion” in the ledger to ensure that every signing request is properly logged prior to emitting the signature, thus leaving an audit trail. This talk describes design considerations and challenges faced when integrating public ledgers with HSMs.