Introduction
This document describes the integration of OneSpan Authentication Server Framework with the Entrust CodeSafe solution. This uses an Entrust nShield Hardware Security Module (HSM) root of trust.
CodeSafe is a runtime environment on the Entrust nShield HSM that allows third-party developers to run their own code within the secure boundary of the module.
Product configurations
Entrust has successfully tested nShield HSM integration with OneSpan Authentication Server Framework in the following configurations:
| Product | Version |
|---|---|
CodeSafe |
12.80.4 |
Security World Compatibility Pack |
1.1.0 |
Operating System |
Red Hat Linux 8 64-bit |
OneSpan ASF |
3.21 |
Supported nShield hardware and software versions
Supported nShield HSM functionality
| Feature | Support |
|---|---|
Module-only key |
Yes |
OCS cards |
Yes |
Softcards |
Yes |
nSaaS |
Yes |
FIPS 140 Level 3 |
Yes |
Requirements
Before installing these products, read the associated documentation:
-
For the nShield HSM: Installation Guide and User Guide.
-
If nShield Remote Administration is to be used: nShield Remote Administration User Guide.
-
For CodeSafe: CodeSafe Developer Guide for Linux
-
OneSpan documentation: Authentication Server Framework HSM Module Management and Authentication Server Framework Key Management for nCipher nShield HSM
| Entrust recommends that you allow only unprivileged connections unless you are performing administrative tasks. |
More information
For more information about OS support, contact your OneSpan sales representative or Entrust nShield Support, https://nshieldsupport.entrust.com.
| Access to the Entrust nShield Support Portal is available to customers under maintenance. To request an account, contact nshield.support@entrust.com. |