Forefront Threat Management Gateway: SSL Key Storage and SafeNet PCI-E HSM


Microsoft Forefront Threat Management Gateway (TMG) is a secure web gateway that unifies multiple layers of security into an easy-to-use solution that protects against advanced web-based threats. Forefront TMG inspects web traffic at the network, application, and content layers so users can safely and productively use network resources without worrying about persistent threats. Beyond its ability to monitor web traffic for viruses and malware, it can serve as a firewall and VPN to secure access to internal resources. An SSL feature set secures internal communications through encryption so sensitive enterprise resources remain visible only to authorized users. TMG can be deployed either as a stand-alone server to deliver maximum performance, or as a virtualized machine combined with other applications to reduce capital investments. 

SafeNet PCI-E HSMs by Gemalto integrate with Forefront TMG to secure SSL transactions by storing master SSL private key in a FIPS 140-2 Level 3 tamper-proof hardware appliance. The SafeNet PCI-E HSM integration also significantly improves server performance by offloading resource intensive cryptographic operations to the purpose-built encryption appliance.

Resources and Additional Information:

Microsoft Forefront Threat Management Gateway and SafeNet PCI-E HSM Integration Guide