Store Master Key in a Hardware Security Module (HSM)
PCI compliance requires that keys are stored in Hardware Security Modules (HSMs) rather than a software KMS. For example, this is required for financial institutions working with customer credit/debit card terminals.
![[Note]](../common/images/admon/note.png) | Note |
|---|---|
You must have a separate partition for each KMS cluster. |
To store keys in an HSM: