Skip to main content
Curity Identity Server is a robust identity and access management (IAM) solution designed to secure access to applications, APIs, and microservices. Highly scalable and customizable, it offers support for modern authentication standards like OAuth2, OpenID Connect, and SAML. Curity handles complex identity requirements, including multi-factor authentication, token management, and fine-grained access control. It is particularly well-suited for enterprises seeking to implement secure, compliant, and efficient identity solutions in both cloud and on-premise environments, with a strong emphasis on developer-friendly features and extensibility.

Using HSMs to protect Curity private keys

The Curity server can work with private keys stored on hardware security modules (HSMs), which helps prevent key disclosure and man-in-the-middle attacks. Curity interfaces with our HSMs by using Java Keystores, the Java SunPKCS11 provider, and the Futurex PKCS #11 library.

Guardian integration

The Guardian Series 3 introduces mission-critical viability to core cryptographic infrastructure, including:
  • Centralization of device management
  • Elimination of points of failure
  • Distribution of transaction loads
  • Group-specific function blocking
  • User-defined grouping systems
See the applicable guide in the Futurex Portal for configuring HSMs with the Guardian Series 3, including PKCS #11 and CNG configuration.