Data protection
Apache HTTP Server
3min
this document provides information about using {{futurex}} pkcs #11 libraries to configure our hsms with apache http server for additional questions related to your hsm, see the relevant user guide about apache http server apache http server, typically referred to as apache, is a free and open source cross platform web server software originally released in 1995, it is one of the oldest and most reliable web server software on the internet, running 67% of all web servers worldwide an open community of developers develops and maintains apache with the guidance of the apache software foundation what is a web server? the purpose of a web server is to serve websites on the internet it accomplishes this though http protocol the primary job of all web servers is to accept requests from clients and send a response to that request, such as the components of the page that a visitor wants to see using hsms to protect apache server private keys the apache http server can work with private keys stored on hsms, which helps to prevent accidental key disclosure and man in the middle attacks for secure communication with the https protocol, the apache http server uses the openssl library, but openssl does not support pkcs #11 natively to use hsms, install the openssl pkcs11 package on centos or the libengine pkcs11 openssl package on ubuntu these packages provide access to pkcs #11 modules through the engine interface you can use a pkcs #11 uri instead of a regular file name to specify a server key and use a certificate in the configuration file for the appropriate website guardian integration the {{guard}} introduces mission critical viability to core cryptographic infrastructure, including centralization of device management elimination of points of failure distribution of transaction loads group specific function blocking user defined grouping systems see the applicable guide in the {{futurex}} portal for configuring hsms with the {{guard}} , including pkcs #11 and cng configuration