Hi! We are using google cloud kms with keys of hsm protection level for signing documents. We want to get digicert document signing certificate but they require to install this certificate on hsm. How can we do this with google hsm and can we do this at all?
Hi @kvydyk
Thanks for reaching out! Just a heads-up, this particular forum is focused on Google Cloud’s Application Integration (our Integration Platform as a Service, or iPaaS) for automating business processes by connecting applications.
While we can’t directly help with your specific question, we invite you to explore other forums in the Google Cloud Community to get more targeted assistance.
Good luck with your setup!
Hi kvydyk,
Welcome to Google Cloud Community!
I agree with @AlexET, to be more specific, you can post your query to forum Infrastructure: Compute, Storage, Networking.
Regarding your question, It’s possible. You can use a DigiCert document signing certificate with Google Cloud HSM. Here’s an overview guide to set up DigiCert Document Signing Certificate with Google Cloud HSM.
- Set Up Google Cloud HSM
-
Enable the Cloud KMS API
-
Create a Key Ring
-
Create an Asymmetric Signing Key
-
- Generate a Certificate Signing Request (CSR)
- Obtain an HSM Attestation Statement
- Submit to DigiCert
- Install and Use the Certificate for Signing
- Use a tool like Jsign or OpenSSL to sign documents, as these support Google Cloud HSM integration.
- Verify the Signature
Here are the relevant documents for your reference:
- Digital signatures: how Sleek leverages Cloud HSM to guarantee the integrity of legal documents
- How to Configure Google CloudHSM to Sign Windows Executables?
- How to Create and Validate Digital Signatures using Google Cloud Key Management Service?
- Cloud HSM Architecture
For additional support, please feel free to reach out to the google support team.
Was this helpful? If so, please accept this answer as “Solution”. If you need additional assistance, reply here within 2 business days and I’ll be happy to help.
1 Like