Yubico Launches New Innovation to Secure Servers

PALO ALTO, Calif. and STOCKHOLM, Aug. 18, 2011 — A growing number of security breaches on servers globally have raised the need for simple and affordable security solutions. Yubico, a leading open source authentication solution provider, today launches the YubiHSM, designed to protect secrets on servers at a yet unmatched simplicity and low cost.

 

Hundreds of thousands of servers around the world are storing sensitive user data and cryptographic secrets related to users. A rapidly increasing number of incidents where servers have been attacked and sensitive user data has been compromised have highlighted the urgent need for better protection of servers. However, the high cost and complexity involved with implementing Hardware Security Module (HSM) technology generally makes it cost prohibitive, thereby leaving the vast majority of servers with sub-standard level of protection.

Yubico has solved its own server security needs by developing an “HSM Light” in the form of a small USB appliance the size of a memory stick where sensitive user data and cryptographic operations are moved out from the server to  the YubiHSM. This approach protects the sensitive information from being remotely compromised.

XPD is a Swedish consulting company, providing Internet security and custom developed IT solutions for financial institutions, energy and healthcare companies and ISPs in Europe and USA. For the last couple of years the company have been recommending Yubico’s YubiKeys for strong authentication and used it for StoredSafe, their own easy to use password security product.

“We welcome the YubiHSM as a great complement for YubiKey users who requires confidentiality, high availability and who wants to manage the complete authentication process and protection of cryptographic secrets,” says Fredrik Söderblom, CEO XPD AB

Successfully used for its own authentication servers and by several beta testers around the globe, Yubico is now offering the YubiHSM for 500 USD per unit, and it can be ordered from the Yubico webstore.

For more information on the YubiHSM, please click here.

About Yubico

Yubico sets new global standards for simple and secure access to computers, mobile devices, servers, and internet accounts.

The company’s core invention, the YubiKey, delivers strong hardware protection, with a simple touch, across any number of IT systems and online services. The YubiHSM, Yubico’s ultra-portable hardware security module, protects sensitive data stored in servers.

Yubico is a leading contributor to the FIDO2WebAuthn, and FIDO Universal 2nd Factor open authentication standards, and the company’s technology is deployed and loved by 9 of the top 10 internet brands and by millions of users in 160 countries.

Founded in 2007, Yubico is privately held, with offices in Sweden, UK, Germany, USA, Australia, and Singapore. For more information: www.yubico.com

Press RoomPress Room

Share this article:


  • Platform independent digital identity for all Many are understandably concerned that the great invention called the Internet, initially created by researchers for sharing information, has become a major threat to democracy, security and trust. The majority of these challenges are caused by stolen, misused or fake identities. To mitigate these risks, some claim that we have to choose between security, usability […]Read moreDigital IdentityEUDIFounderStina Ehrensvard
  • Q&A with Yubico’s CEO: Our move to the main Nasdaq market in StockholmAs 2024 draws to a close, it’s the perfect time to reflect on the incredible journey we’ve had this year and how it has shaped where we stand today as a company. To mark this moment, I sat down with our CEO, Mattias Danielsson, to look back on the milestones and achievements of 2024—culminating in […]Read moreCEOMattias Danielsson
  • Exploring DORA: A look at the next major EU mandateFinancial institutions have historically managed operational risk using capital allocation, but under EU Regulation 2022/2554 – also known as the Digital Operational Resilience Act (DORA) – the financial sector and associated entities in the European Economic Area (EEA) must also soon follow new rules. These new rules focus on the protection, detection, containment, and the […]Read moreDORAEU
  • Securing critical infrastructure from modern cyber threats with phishing-resistant authenticationAcross the globe, 2024 has seen a whirlwind of change. With ongoing wars, recent political change-ups and more, growth in data breaches targeting critical infrastructure continue to be on the rise. Critical infrastructure is integral to our everyday life – from the energy and natural resources powering our hospitals and providing clean drinking water, telco […]Read moreCISAcritical infrastructurezero trust