Transparent token access
Regarding your needs, there are two ways to use Eternity depending on the management of the time source and cryptographic processing: either based on a easy-and-cheap software solution, or on a secure and dedicated Hardware Security Module (HSM).
Software mode, simple and convenient
The major benefit of this mode is that set up and administration are very easy.
Keep in mind, however, that the authentication to the administration interface is then based upon a login/password, stored in the simple text configuration file.
HSM mode, the most secure and efficient way
Take advantage of the secure architecture and the embedded cryptographic processor of a HSM:
- The signature keys are securely stored in a tamper-protected architecture.
- A cryptographic processor dedicated to signature processing, offering high performances.
- The internal clock of such a HSM can only be changed by a group of administrators authenticated thanks to a set of smartcards.
The HSM mode brings you the best security level.
See the Advanced security section to read more!