https://community.checkpoint.com/t5/General-Topics/R82-10-Hardware-Security-Module-HSM-for-TLS-1-3/m-p/254789#M42818 <P><BR /><A href="https://community.checkpoint.com/t5/Product-Announcements/R82-10-EA-Program-Production/ba-p/252207" target="_self">R82.10 EA Program | Production</A>&nbsp;<BR /><BR />CUT&gt;&gt;&gt;<BR />HTTPS Inspection now supports <STRONG>Hardware Security Module (HSM)</STRONG> for TLS 1.3 decryption, which enables secure, high-performance decryption and inspection of encrypted traffic.<BR />&lt;&lt;CUT<BR /><BR />In your announcements for R82.10, you mention that HTTPS interception will leverage a "Hardware Security Module" (HSM). How does this work in practice? <BR /><BR />Will there be new appliances that include this functionality, or will there be dedicated HSM modules or slots available?<BR /><BR /><BR /></P> Fri, 08 Aug 2025 09:10:49 GMT HeikoAnkenbrand 2025-08-08T09:10:49Z https://community.checkpoint.com/t5/General-Topics/R82-10-Hardware-Security-Module-HSM-for-TLS-1-3/m-p/254789#M42818 <P><BR /><A href="https://community.checkpoint.com/t5/Product-Announcements/R82-10-EA-Program-Production/ba-p/252207" target="_self">R82.10 EA Program | Production</A>&nbsp;<BR /><BR />CUT&gt;&gt;&gt;<BR />HTTPS Inspection now supports <STRONG>Hardware Security Module (HSM)</STRONG> for TLS 1.3 decryption, which enables secure, high-performance decryption and inspection of encrypted traffic.<BR />&lt;&lt;CUT<BR /><BR />In your announcements for R82.10, you mention that HTTPS interception will leverage a "Hardware Security Module" (HSM). How does this work in practice? <BR /><BR />Will there be new appliances that include this functionality, or will there be dedicated HSM modules or slots available?<BR /><BR /><BR /></P> Fri, 08 Aug 2025 09:10:49 GMT https://community.checkpoint.com/t5/General-Topics/R82-10-Hardware-Security-Module-HSM-for-TLS-1-3/m-p/254789#M42818 HeikoAnkenbrand 2025-08-08T09:10:49Z https://community.checkpoint.com/t5/General-Topics/R82-10-Hardware-Security-Module-HSM-for-TLS-1-3/m-p/254790#M42819 <P>I believe it's simply TLS 1.3 support that is specifically new.</P> <P>HSM support exists in previous versions otherwise i.e</P> <P>&nbsp;<A href="https://sc1.checkpoint.com/documents/R82/WebAdminGuides/EN/CP_R82_SecurityGateway_Guide/Content/Topics-FWG/HSM.htm" target="_blank" rel="noopener">https://sc1.checkpoint.com/documents/R82/WebAdminGuides/EN/CP_R82_SecurityGateway_Guide/Content/Topics-FWG/HSM.htm</A></P> <TABLE id="limitationTable" class="footnote" border="1" width="100%" cellspacing="2" cellpadding="4" data-darkreader-inline-border-top="" data-darkreader-inline-border-right="" data-darkreader-inline-border-bottom="" data-darkreader-inline-border-left=""> <TBODY> <TR class="SubTitle" bgcolor="#d6dff0" data-darkreader-inline-bgcolor=""> <TD width="10%">ID</TD> <TD width="82%">Description</TD> <TD width="8%">Found in version</TD> </TR> </TBODY> </TABLE> <TABLE id="limitationTable" class="footnote" border="1" width="100%" cellspacing="2" cellpadding="4" data-darkreader-inline-border-top="" data-darkreader-inline-border-right="" data-darkreader-inline-border-bottom="" data-darkreader-inline-border-left=""> <TBODY> <TR> <TD>PMTR-103024,<BR />CRYPTOIS-2197</TD> <TD>HTTPS Inspection does not support Hardware Security Modules (HSM) when inspection of TLS 1.3 traffic is enabled.&nbsp;With HTTPS Inspection, you can enable only one of these features - TLS 1.3 or HSM.</TD> <TD>R81</TD> </TR> </TBODY> </TABLE> <P>&nbsp;</P> <P>&nbsp;</P> Fri, 08 Aug 2025 11:34:38 GMT https://community.checkpoint.com/t5/General-Topics/R82-10-Hardware-Security-Module-HSM-for-TLS-1-3/m-p/254790#M42819 Chris_Atkinson 2025-08-08T11:34:38Z