Securing the HTTPS private key

rainer at rainer at
Fri Nov 16 08:02:34 UTC 2018

Am 2018-11-16 07:02, schrieb Roger Fischer:
> Hi Alex,
> our device is unattended, not always on, and in some cases in only
> semi-secured locations. Besides preventing root access, we also need
> to protect against the hacking of a stolen device (or disk).
> Human interaction is not practical (other than in exceptional
> situations).

Well, in that case you might really want to look at HSMs.
They need not be installed locally, AFAIK.

What's your budget, BTW?

More information about the nginx mailing list