Hanzo HSM
Cloud HSM. FIPS 140-3 hardware-backed key management for production workloads. Generate, store, and use cryptographic keys without exposing private material.
FIPS 140-3 Level 3
Hardware-backed key storage in tamper-evident HSM modules with certified cryptographic boundaries.
Hardware key generation
Keys generated and held inside the HSM. Private material never leaves the secure boundary in plaintext.
Envelope encryption
Wrap data keys with HSM-resident master keys. Standard KMS interface, hardware-rooted trust.
Sign and verify
RSA, ECDSA, EdDSA, and post-quantum signatures executed inside the HSM. Audit-logged per operation.
Cluster replication
Multi-region HSM clusters with quorum-based key sync. No single point of failure for cryptographic operations.
BYOK and HYOK
Bring your own key material via wrapped import, or hold your own key with customer-controlled root of trust.