Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #5223

Details

Module Name
u.trust Anchor
Standard
FIPS 140-3
Status
Active
Sunset Date
3/31/2031
Overall Level
3
Caveat
When operated in approved mode. When installed, initialized and configured as specified in Section 11.1 of the Security Policy. No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs.
Security Level Exceptions
  • Operational environment: N/A
  • Non-invasive security: N/A
Module Type
Hardware
Embodiment
MultiChipEmbed
Description
u.trust Anchor is a new generation of HSM, comprising all traditional hardware security features and introducing containerized HSMs (cHSMs). Each cHSM provides secure cryptographic services such as signing and verification of data, encryption or decryption, hashing, on-board random number generation and secure key generation, key storage and key management functions in a tamper-protected multi-tenant environment. The HSM delivers a highly elastic HSM architecture that scales rapidly on demand and enables service providers to deliver HSM as a Service (HSMaaS) in multiple use cases.

Vendor

Utimaco IS GmbH
Krefelder Straße 220
Aachen 52070
Germany

Erling Wesselhoff
[email protected]
Phone: 492411696200
Fax: 492411696199

Related Files

Security Policy

Validation History

Date Type Lab
4/1/2026 Initial Penumbra Security, Inc.
4/22/2026 Update Penumbra Security, Inc.