Hardware security module support
PegaSys Plus provides a plugin to support Luna hardware security modules (HSMs). This provides the ability to store the node’s keys in external hardware. For example, to protect a validator node’s key in an IBFT 2.0 network.
The Luna HSM plugin can only be used to store the node’s public and private key file. The plugin cannot be used to store transaction signing keys.
You can use Prometheus to access the following available Luna HSM metrics.
||Number of requests for the public key|
||Number of Luna reconnection attempts|
||Number of signing requests|
||Time (seconds) taken to perform signing|
||Time (seconds) taken to calculate a ECDH Key Agreement|
||Number of ECDH Key Agreement calculations|
You must enable the
LUNA_HSM metrics category
to view the metrics.