nShield 5 adoption steps
The steps below detail the most common approach for adoption of the nShield 5, both the nShield 5s and the nShield 5c.
As detailed in nShield 5 Compatibility, the nShield 5 HSM will support the same algorithms and follow the same Security World restrictions as an older generation of HSM running the same version of firmware and using the same Security World Software. Please consult the firmware release notes for details of any changes to this from the version currently in use.
-
Upgrade Security World Clientside Software
The first step is to ensure the clientside software has been upgraded to a version that supports the nShield 5 HSM:
Upgrade the Security World Clientside software to the latest v13.6 version. See for detailed instructions on installing v13.6.
After this step, the Security World will support current HSMs and nShield 5.
-
Install the new nShield 5 HSM hardware.
Follow the hardware setup instructions to install the new nShield 5 HSM. See hardware install guide.
-
Upgrade the 5s firmware or 5c image to the required version. Upgrade the firmware on the nShield 5s and/or 5c image on the nShield 5c to the desired version.
See Hardware, firmware, software versions in nShield 5 for details of the different versions and certifications and what new nShield 5 FW should be used.
-
Load/create new security world onto the nShield 5 HSM.
-
If a Security World already exists, load this onto the new nShield 5 HSM, see add an HSM to a security world.
-
Otherwise, create a new Security World onto the new nShield 5 HSM, see create a security world.
-