Trustway Proteccio EL Trustway Proteccio HR Trustway Proteccio XR Chiffrement AES 256 Up to 100 Mbits/s Up to 200 Mbits/s Up to 300 Mbits/s Signature RSA 2048bits Up to 40 sign/s Up to 1000 sign/s Up to 4000 sign/s Signature Ecdsa 256bits Up to 300 sign/s Up to 2000 sign/s Up to 4500 sign/s PQC n/a Release Release HSM as a service n/a Available n/a

Physical characteristics

2U 19in. Rack mount appliance Dimensions (cm): H88 x W435 D350 Weight: 11kg Voltage : 100-240v, 50-60Hz Temperature : operating 0°C-40°C Relative humidity : 1% to 90% (38°C) non-condensing Redundant power supply

Asymmetric encryption: RSA Symmetric encryption: AES 128 to 256, 3DES Electronic signature: RSA PSS, PKCS v1.5, ECDSA Post-quantum algorithms: ML-DSA, SLH-DSA, ML-KEM Hashing: MD5, SHA-1, SHA 256, SHA 384, SHA 512 Supported named curves: ANSI, NIST, ANSSI and all curves up to 521 bits, including Brainpool

Algorithms supported in PQC Version: ML-DSA – Signature algorithm SLH-DSA – Signature algorithm ML-KEM – Key exchange mechanism

Trustway DataProtect

Keep control of your data with a 100% sovereign solution

Why should protecting your data mean sacrificing performance?

DataProtect, our next-generation solution combines the highest level of security of Eviden’s Trustway Proteccio™ HSM with the crypto-agile performance and agility of Cosmian’s KMS, to allow companies to maintain full control over the protection of their most sensitive data.

It offers a sovereign and agile response to the most critical security challenges, by guaranteeing complete control of encryption keys within a 100% French infrastructure.

DataProtect benefits

DataProtect solution combines the best of hardware and software to offer sovereign, high-performance and innovative data protection.

Eviden’s HSM Trustway Proteccio™, the only one to benefit from the ANSSI’s enhanced qualification (QR), acts as a tamper-proof hardware base. Designed and manufactured in Europe, it guarantees 100% sovereign encryption and total control over the encryption keys.

The Cosmian KMS, which is entirely open source and crypto-agile, completes this hardware brick by centralizing the management of the key lifecycle: generation, storage, rotation, distribution and application of access policies. Ultra-efficient, it encrypts up to 5 million messages in less than 5 seconds.

Beyond key management, Cosmian introduces a major advance: Confidential Computing. With in-use encryption, data remains protected not only when it’s stored or in transit, but also when it’s being exploited. Even in use, they remain inaccessible to unauthorized third parties, including administrators or cloud providers.

With DataProtect, organizations have a 100% sovereign solution, combining hardware security, software performance and end-to-end privacy.

Unmatched security

Total sovereignty

Post-Quantum Resistance

Scalability and flexibility

Operational efficiency

Data protection use cases

Workspace applications security

Protect your business communications and documents in Google Workspace and Microsoft 365. Our solution keeps your emails, files, and shared content encrypted at all times, even while being edited collaboratively.

With encryption keys under your control, not the provider’s, you decide who can access sensitive data. Work productively in familiar apps, without compromising confidentiality.

Learn more

AI Security

Deploy and optimize AI models without exposing it. Our encryption technology ensures both your datasets and models remain protected during training, inference, and optimization, with no performance trade-offs.

This allows you to unlock the power of AI while meeting strict compliance standards in industries like healthcare, finance, and defense.

Learn more

Cloud Security

Move to the cloud with confidence. Our solution encrypts your data and applications at rest, in transit, and even while in use. Decryption keys remain in your hands, ensuring that not even your cloud provider can access your information.

The result: full scalability and flexibility of the cloud, with guaranteed privacy and compliance across jurisdictions.

Learn more

Data lakes security

Protect the heart of your analytics strategy. Our solution secures your data lake with end-to-end encryption, ensuring that sensitive information remains confidential even in centralized storage.

With custom decryption rights per user, access is tightly controlled and adaptable to roles or projects. Analysts get the insights they need, while your raw data stays safe.

Learn more

Certifications

The tamper-proof design of Trustway Proteccio netHSM has been certified with:

Common criteria EAL4+ certification
The cryptographic module
The communication module
ANSSI QR (Enhanced Qualification)
Highest level of qualification
The only HSM with Enhanced Qualification
European agreements
100% European cryptography

CC EAL4+

NATO SECRET

ANSSI QR

eIDAS

SOG-IS

Discover our solutions directly on the Marketplaces

Available now

Related resources

Factsheet

DataProtect

Discover how to take back control of your data with sovereign end-to-end encryption.

Factsheet

Trustway Proteccio NetHSM

Trustway Proteccio™ NetHSM, the only HSM with the French national cybersecurity agency ‘s “reinforced qualification”, the data protection for governments, companies and critical infrastructures.

Brochure

Data Security with a HSM

Our Hardware Security Module (HSM) offers software solutions within a highly secure and high-performance environment, enabling the execution of the most sensitive cryptographic operations.

Antoine Schweitzer-Chaput

Head of BU Trustway

Corentin Cordier

Cybersecurity Product Owner

Charles Piron

Global Sales Director

DataProtect: Next-generation data protection

Why should protecting your data mean sacrificing performance?

DataProtect benefits