AWS 推出 CloudHSM 服務:「AWS CloudHSM - Secure Key Storage and Cryptographic Operations」。
不便宜,看起來是為了需要 NIST FIPS 140-2 需求而設的吧?跑的是 Luna SA - Ethernet-Attached HSM,可以達到 Level 3 的安全性...
然後遇到安全性時的老問題,要怎麼 audit:
Amazon claims that they have no access to keys stored on #AWS #CloudHSM, but how do we know it's really an HSM? #professionallyparanoid
— Colin Percival (@cperciva) March 26, 2013
感覺上是個口水戰,來拉板凳... XD