Check Point Security Gateway
2min
This document provides information about the configuration of Futurex HSMs with Check Point Security Gateway by using PKCS #11 libraries. For additional questions related to your HSM, see the relevant administrator’s guide.
Check Point Security Gateway uses an HSM for outbound HTTPS Inspection.
The HSM holds these objects for outbound HTTPS Inspection:
- The Certificate Authority (CA) certificate (certificate buffer + key pair). The administrator creates the CA certificate and key pair before configuring the Security Gateway to work with an HSM.
- Two to three RSA key pairs for fake certificates. These keys are created during the initialization of the HTTPS Inspection daemon on the Security Gateway with 1024-bit, 2048-bit, or 4096-bit length.
The Guardian Series 3 introduces mission-critical viability to core cryptographic infrastructure, including:
- Centralization of device management
- Elimination of points of failure
- Distribution of transaction loads
- Group-specific function blocking
- User-defined grouping systems
Please see the applicable guide in the Futurex Portal, which covers how to use the Guardian Series 3 to configure HSMs for PKCS #11 integrations.
Updated 02 May 2024
Did this page help you?