Menu

Hardware Security Module (HSM)

Fully automate your payment file and submission workflows with a Hardware Security Module; removing the need for manual smart card authentication.

Book a Demo
button-arrow-white
What is DDMS_-1

Introducing Hardware Security Module (HSM)

Hardware Security Modules (HSM) are the pinnacle of BACS submission security and automation. Implementing a Hardware Security Module into the BACS payment process allows you to automate as much as you are comfortable with.

At Interbacs, we are utilising HSMs to help the public sector and larger organisations streamline complex payment processes and improve system performance. This has helped organisations to realise cost and time efficiencies and boost their digital data security.

How are Hardware Security Modules helping?

Hardware Security Modules are transforming how organisations manage substantial financial operations, delivering enhanced security and operational efficiency. Many of our clients have encountered significant challenges as financial workloads have increased. Security remains paramount, particularly in light of evolving data protection regulations and the growing demand for robust data storage and secure file transfer protocols, to mitigate the rising threat of cyberattacks.  Risks can be minimised or negated by limiting the need for use of physical smart cards. 

Many of our clients’ finance departments reported recurring incidents of human error and preventable oversights, largely a result of processing high volumes of payment files or submissions in conjunction with their core business responsibilities. Switching to a Hardware Security Module as a Service (HSMaaS) solution has and continues to be revolutionary for businesses with complex BACS payment processes, allowing them to reduce errors, tackle scaling workloads & better manage disaster recovery processes. 

What is a Hardware Security Module?

A Hardware Security Module (HSM) is a physical storage device that conforms to standard FIPS 140-2 Level 3 (security standard for cryptographic modules, focusing on physical security and identity-based authentication). The HSM stores and safeguards cryptographic keys and certificates, removing the need for manual sign-off of payment files and submissions. The encrypted storage device is typically housed off-site in an ultra secure ISO Accredited server center and is seamlessly integrated with your BACS Approved InterPay DDMS software. 

How does it work?

The HSM integrates into your payment file submission process and works alongside our Interpay software to fully automate the process. Stored certificates and cryptographic keys (public/private keys) are automatically called upon and checked at key steps to validate and authorise submissions. Segregation of duties and role based permissions are implemented automatically and your desired reports are generated and actioned automatically for you to view within Interpay DDMS.  
Interbacs_HSM_v0.5-01

Attended Vs Unattended
Attended HSM
Attended HSM
Attended HSM is a customisable approach that allows you to maintain a desired level of control. Gain the added security of HSM but enable digital signature requirements or two factor authentication. We charge no extra cost for this feature.
Unattended HSM
Unattended HSM
Unattended HSM is the complete "hands-off" approach and offers the highest levels of security. Store all keys and certificates, develop segregation of duties and completely automate the entire BACS payment file and submissions process.

How to switch to an HSM:
bank_icon

Step 1

The first step is to obtain an HSM Certificate through your bank; contact them and enquire about their HSM Certificate Application process. The Interbacs team is always happy to help and can guide you along the process.

Step 2

Following submission of your completed application form, your bank will request that you provide a Certificate Signing Request (CSR). At this stage, contact us as Interbacs will generate this for you. 
interbacs_icon
certificate_icon

Step 3

Once the bank has received and checked your Certificate Signing Request (CSR), you will be awarded the certificate. Once you send this over to us, we will load it into your Hardware Security Module to enable use via Interpay DDMS.

Features & Benefits
Security_icon_web

Security

Strengthen your digital security by storing cryptographic keys in a tamper-resistant FIPS 140-2 Level 3 compliant device, stored in an ultra secure, ISO Accredited data center. 

Efficiency_icon_web

Efficiency

Create automated payment file and submission workflows for time consuming routine tasks to enable your finance teams to focus on other business critical activities. 

Flexibility_icon_web

Flexibility

Customise your level of automation for peace of mind. Unattended allows creation of automated workflows with multi-user, manual signing via 2FA.

Risk_icon_web

Risk Mitigation

Configure your file upload and approval workflows and tailor your submission frequencies to remove the potential for incorrect processing and human error.

Book a free demo now with one of our Hardware Security Module automation specialists.

Book a Demo
button-arrow-white

Public sector organisations can find us on GCloud under Lot 2: Cloud Software (BACS HSM).

Go to GCloud
button-arrow-white

Backed by industry standards
bacs approved software Bacs-accredited-facilities-management-provider-RGB-large (1) bacs aproved bureau bacs electronic elements affiliate ico certified certified plus thumbnail_ISO 9001-2015-h-darkfull-1 thumbnail_ISO 27001-2022-h-darkfull