Modules
HSM Dinamo has been entirely developed with a modular architecture, with the aim of providing the client with the set of functionality required for their needs and allowing them to expand this set by adding new modules or new versions of existing modules.
Some of the features described below may not be present in your version of HSM, or the module that implements them may not have been purchased. There is no direct relationship between API functions and installed modules, as different characteristics of the same function may be served by different modules. With the exception of the Core modules (Core Crypto and State Manager), all others are optional. If in doubt, contact your supplier for clarification.
The following table lists the available modules.
| Module | Description | Trade Name | License | API |
|---|---|---|---|---|
| Core Crypto | General cryptographic functions. Symmetric, asymmetric and hash algorithms. Object management (cryptographic keys, certificates, certification chains, CRLs and binary files). | KMS | - | - |
| State Manager | Monitoring CPU, memory, active sessions, hardware events. | State Manager | - | - |
| OATH | Two-factor authentication (password + token code) using the Open Authentication (OATH) standard. | OTP | - | API OATH |
| SPB | Encoding and decoding of SPB - Brazilian Payment System - standard messages. | SPB | module-spb |
API SPB |
| XML Sign | XML document signing according to the W3C standard. | XML Signer | module-xml-dsig |
XML Sign API |
| EFT | Electronic Funds Transfer functions. | PayCard | module-eft |
API EFT |
| EFT Direct | Electronic Funds Transfer functions with direct access. | PayCard Direct | module-eft-direct |
- |
| Pix | Functions for the Central Bank of Brazil's Instant Payment System. | Pix | pix |
API Pix |
| SVault | Functions for tokenization and data encryption with format preservation. | Anonymization | module-svault |
SVault API |
| TSP | RFC 3161 standard time stamp functions. | TimeStamp | module-tsp |
- |
| Blockchain | Cryptographic functions compatible with public and private blockchains. | Blockchain | module-blockchain |
Blockchain API |
| Safe Keeping | Management operations for custodial secrets. | Safe Keeping | module-safekeeping |
API Safe Keeping |
In restricted operating modes, only the Core Crypto Engine and State Manager modules are available for loading, in accordance with the restrictions imposed by the appropriate standards, and only the algorithms of approved functions can be used.