Black Hat 2024: Marvell Secures Microsoft LiquidSecurity HSM Update

Black Hat 2024: Marvell Secures Microsoft LiquidSecurity HSM Update

The News: Marvell, a provider of data infrastructure semiconductor solutions, announced that Microsoft will update its fleet of LiquidSecurity hardware security modules (HSMs) to the FIPS 140-3, Level-3 standard to further enhance its internal security posture and the portfolio of security services offered to its customers. Read the full press release on the Marvell website.

Black Hat 2024: Marvell Secures Microsoft LiquidSecurity HSM Update

Analyst Take: Marvell Technology, Inc. unveiled that Microsoft has committed to updating its fleet of LiquidSecurity HSMs to the FIPS 140-3, Level 3 standard building on its existing relationship comprising of Azure using the Marvell family of LiquidSecurity hardware security modules (HSMs) to perform encryption, key management, and other security functions.

Marvell LiquidSecurity 1 and LiquidSecurity 2 HSMs achieved FIPS 140-3 Level-3 certification from the National Institute of Standards and Technology (NIST) in June 2024. Stringent FIPS 140-3 certification is required by many financial institutions and government organizations and, to date, has largely been available only with traditional HSMs for on-premises use.

The LiquidSecurity 2 (LS2) solution is aimed primarily at supporting enterprise HSM users in their journey from on-premise HSM implementation to multi-cloud and private cloud environments. Today, the Marvell LiquidSecurity platform is already deployed extensively across large enterprise and cloud service provider environments (i.e., Azure) and is integral in their development of HSM-as-a-service for encryption, authentication, and secure key management. LiquidSecurity HSMs are PCIe-based devices powered by OCTEON DPUs and designed for use in dense multi-tenant cloud environments. In addition to HSM-as-a-service and HSM-backed encryption key vault, key use cases include securing and authenticating users for payment processing and securing user data backup from mobile devices.

HSMs are specialized devices for key management, encryption, and authorization with private keys stored and operated in tamper-resistant FIPS-certified hardware. However, traditional HSM solutions typically cost $10K to $40K and are primarily on-premises requiring extra handling and care, which also impedes broader adoption. By purpose-building HSM solutions for public and private clouds, I anticipate that use cases and user adoption can swiftly broaden.

Today six of the ten largest cloud service providers use LiquidSecurity in their operations. A single LiquidSecurity2 card can manage 100,000 pairs of encryption keys and process more than one million operations per second. Specifically, hyperscaler HSM solutions, such as Azure Key Vault Managed HSM, AWS CloudHSM, Key Management with OCI Vault, and Alibaba Data Encryption Service, are broadening ecosystem-wide awareness and adoption.

As a result, cloud service providers can deliver HSM services while consuming a fraction of the power, rack space, and hardware required by traditional HSMs. Meanwhile, HSM users can switch from the complexity of managing hardware to the ease of subscribing to HSM services. The cloud-based model for HSMs also reduces barriers to employing HSM and encryption services for secure medical records and other transactions.

Key Takeaway: Marvell LiquidSecurity 2 Cloud HSMs Rise to Meet the Cybersecurity Challenge

Overall, I find that the Marvell attaining NIST FIPS 140-3, Level-3 certification for its LiquidSecurity HSMs bolster its portfolio credentials across the cybersecurity ecosystem. The move strengthens Marvell’s ability to fulfill growing ecosystem demand for more robust security of mission-critical data and applications using hardware-backed encryption and key management, especially as security, privacy, and compliance risks continue to escalate.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other Insights from The Futurum Group:

Marvell Q1 Fiscal 2025: Custom AI Silicon Plays the Starring Role

Marvell Right Sizes AEC Connections to Meet New AI Acceleration Demands

Marvell Pumps up the Teralynx 10 Ethernet Switch Volume

Author Information

Ron is an experienced, customer-focused research expert and analyst, with over 20 years of experience in the digital and IT transformation markets, working with businesses to drive consistent revenue and sales growth.

He is a recognized authority at tracking the evolution of and identifying the key disruptive trends within the service enablement ecosystem, including a wide range of topics across software and services, infrastructure, 5G communications, Internet of Things (IoT), Artificial Intelligence (AI), analytics, security, cloud computing, revenue management, and regulatory issues.

Prior to his work with The Futurum Group, Ron worked with GlobalData Technology creating syndicated and custom research across a wide variety of technical fields. His work with Current Analysis focused on the broadband and service provider infrastructure markets.

Ron holds a Master of Arts in Public Policy from University of Nevada — Las Vegas and a Bachelor of Arts in political science/government from William and Mary.

SHARE:

Latest Insights:

Oracle’s Latest Exadata X11M Platform Delivers Key Enhancements in Performance, Efficiency, and Energy Conservation for AI and Data Workloads
Futurum’s Ron Westfall examines why Exadata X11M allows customers to decide where they want to gain the best performance for their Oracle Database workloads from new levels of price performance, consolidation, and efficiency alongside savings in hardware, power and cooling, and data center space.
Lenovo’s CES 2025 Lineup Included Two New AI-Powered ThinkPad X9 Prosumer PCs for Hybrid Workers
Olivier Blanchard, Research Director at The Futurum Group, shares his insights on how Lenovo’s new Aura Edition ThinkPad X9 prosumer PCs help the company maximize Intel’s new Core Ultra processors to deliver a richer and more differentiated AI feature set on premium tier Copilot+ PCs to hybrid workers.
Lenovo’s New ThinkBook Plus 6 Rollable Isn’t for Everyone, but It Might Not Be as Niche as It Seems at First Glance
Olivier Blanchard, Research Director at The Futurum Group, shares his insights on how Lenovo’s new ThinkBook Gen 6 Rollable laptop could make the case for more versatile, hybrid laptop form factors, and turn a niche play into a mainstream feature.
Daniel Newman and Patrick Moorhead discuss the biggest innovations unveiled at CES 2025. From Meta’s community-driven moderation to NVIDIA’s AI advancements and Qualcomm’s edge computing breakthroughs sharing a technical look at CES’s top trends.

Thank you, we received your request, a member of our team will be in contact with you.