👤 Identity and Access Management knowledge for cloud platforms

Block's Bitcoin Cold Storage solution.

Protecting cryptographic signing keys and seed secrets with Multi-Party Computation.

An End-to-End Distributed and Scalable Cloud KMS (Key Management System) built on top of Intel SGX enclave-based HSM (Hardware Security Module), aka eHSM.

HSM documentation

golang crypto.Signer for Trusted Platform Module (TPM) and Google Cloud KMS

Zion Key Management Service

Hardware-based password/SSH key/secret manager for people serious about security

The Vault HSM PKI plugin overlays the modifications to the builtin PKI plugin that enable support for certificate signing using a Hardware Security Module via PKCS#11.

Running Rust code on nCipher HSMs (using CodeSafe).

An HSM simulator implemented in Java, ANSI X9, 3DES, DUKPT, etc..

Platform software for Trusted Computing - TPM 2.0, Certificate Authority, and Web Services required to perform Local and Remote Attestation, provision, deploy, manage, and secure connected devices and networks at scale.

A set of tools for Secure Hardware Extension

Crypto microbenchmarking tool.

Build your own Certificate Authority to implement certificate chain

Generate and verify JWT tokens with PKCS-11

A cheat sheet of PKCS11 command to use Nitrokey HSM 2 (or other PKCS11 HSM)

HashiCorp Vault Community Edition for REST-based Securosys HSM and CloudsHSM integration with enhanced features (multi-authorization).

HashiCorp Vault Secrets Engine plugin for REST-based Securosys HSM and CloudsHSM integration with enhanced features (ECIES, multi-authorization).

Five thousand randomly placed needles