Reading the factsheets and docs still leaves a bit of a doubt:
- only the HSM / HSM 2 have the feature to “re-import” / perform disaster recovery (on the basis of a DKEK), correct?
- all others will hold the private keys/certs on just 1 piece of hardware, correct?
Preparing for my annual ITSec housecleaning I am evaluating my options for an improved setup.