2 Answers
- Newest
- Most votes
- Most comments
0
Hi Leo K,
Thanks for your information. But my requirement is base on the industry (EMV), according the EMV standard current the max CA's Modulus bit is 1984 bits, and for the smart card vendors, it required the less modulus bit size for the ICC such as 1024 bit/1408 bits.
We used to use the Local HSM for this kind of task, and we intend to migrate to support the cloud hsm that's why I raised this question.
Is it possible for the CloudHSM to support this kind of requirement ?
answered a year ago
0
The minimum length still considered secure today for RSA is 2048 bits. CloudHSM is rather an expensive piece of technology specifically meant for security-sensitive use cases, so it's intentionally hardwired to enforce that minimum.
<MODULUS_SIZE_BITS>
Specifies the length of the modulus in bits. The minimum value is 2048.
Required: Yes
Relevant content
- asked 7 months ago
- asked 3 years ago
- asked 8 months ago
- AWS OFFICIALUpdated a year ago
The CloudHSM service doesn't include that capability, but if this is a common requirement in the payments industry, it's conceivable the CloudHSM service team might have a way to accommodate exceptions. If you have an Enterprise level support contract with AWS, I suggest you ask the TAM in your account team about the requirement. If you have Business level or higher support, you could try raising a support ticket. With only basic level support, I'm not sure if there's a way easier than contacting AWS sales to ask them to consult with the CloudHSM service team.