Cybersecurity hardware

Cybersecurity hardware focuses on protecting systems against the vulnerabilities at the physical layer with specific devices. Hardware-based cybersecurity products can be used to detect, block and record cyberattacks in a broad range of application areas, from vehicles and factory robots to consumer devices and IT networks. It is a generally accepted cybersecurity strategy to implement a layered security approach by compartmentalising or segmenting areas that have different trust levels. There is a variety of means to defend networks against external threats, such as firewalls (software-based), stand-alone networks (physical), or data diodes (hardware).

The data diode enables data transfer in a single direction. Data diode technology can provide cybersecurity while at the same time providing network connectivity. Data diodes traditionally serve to protect secrets and to protect assets. With this technology, there is no memory, settings or parameters that can be changed or hacked, those aspects give software solutions inherent weaknesses. A hardware security module (HSM) is another physical computing device that for instance safeguards and manages digital keys, performs encryption and decryption functions for digital signatures, strong authentication, and other cryptographic functions. These modules are hardware based and attached directly to a computer or network server, they contain one or more secure cryptoprocessor chips.

Related keywords: bus probing, smart card, security token, Common Criteria, FIPS 140, Public key infrastructure (PKI), Payment Card Industry Security Standards