Updated on 2024-05-15 GMT+08:00

Creating a Dedicated HSM Instance

When creating a Dedicated HSM instance, you need to specify the region and fill in your contact information.

The fee for a Dedicated HSM instance in platinum edition consists of the following two parts:

Prerequisites

You have obtained the login account (with the Ticket Administrator and KMS Administrator permissions) and password for logging in to the management console.

Constraints

  • When purchasing a Dedicated HSM instance, you need to submit a service ticket to set the UKey recipient information. Only the accounts with the Ticket Administrator permission can submit service tickets.
  • After you created an instance, a UKey will be sent to the address in your contact information. Then you can use the UKey to initialize and authorize your service applications to access the instance.

    You need to activate the instance before using it.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click . Choose Security & Compliance > Data Encryption Workshop.
  4. In the navigation pane on the left, choose Dedicated HSM > Instances.
  5. Click Create Dedicated HSM in the upper right corner of the page.
  6. Billing Mode can only be set to Yearly/Monthly.

    Figure 1 Billing Mode

  7. Select a region and project.

    Figure 2 Selecting a region
    • Select the current region and the default project.
    • Only the default project is supported. User-defined projects cannot be created.

  8. Select the service edition for the instance. See Figure 3 for details. Table 1 lists related parameters.

    Figure 3 Platinum edition (outside Chinese mainland)
    Table 1 Edition parameters

    Parameter

    Description

    Service Edition

    Platinum edition (outside Chinese mainland)

    Encryption Algorithm

    Algorithm supported by the HSM instance.

    • Symmetric algorithm: AES
    • Asymmetric algorithm: RSA, DSA, ECDSA, DE, and ECDH
    • Digest algorithm: SHA1, SHA256, SHA384

    Certification

    FIPS 140-2 Level 3 certified

  9. Choose Service Tickets > Create Service Ticket. Our Huawei Cloud experts will contact you and provide a customized purchase plan and its quote.

    • In the Case Severity drop-down list, select General guidance.
    • In the Problem Description text box, enter Dedicated HSM Contact Information.
    • Contact Information: Enter the phone number and email address to receive the progress information of the service ticket.

    Ensure that the contact information provided in the Confidential Information text box is valid so that our security experts can contact you in a timely manner.

    Figure 4 Creating a service ticket

  10. Click Submit. The service ticket is displayed on the My Service Tickets page.

    After the service ticket is created successfully, you can click View Details in the Operation column to view details. You can remind the support team of a service ticket, leave your messages, cancel a service ticket, or closed a service ticket based on service ticket statuses.