Servers

Secure hardware-based RoT was initially requested by Federal and SLED agencies as part of their request for proposals (RFP) for servers (and other IT products), which meant it required the manufacturer to properly implement the functionality and have it certified by authorized agencies.



Financial Services, Retail, Healthcare, and most verticals value and are beginning to require it. It can be difficult to achieve since many manufacturers buy off the shelf components outside the United States. These may have their own firmware code or firmware written to the components, without any anchor point, making the product entirely more vulnerable to firmware breaches and other exploits. Servers with U.S.A design and integration of Silicon RoT, more secure supply chain measures, and government agency security compliance are quickly becoming a requirement.

One of Nth Generation partners that has achieved the Marsh Cyber Catalyst designation is Hewlett Packard Enterprise (HPE), which was awarded the designation in 2019 for its Gen10 server integrated lights out version 5 (iLO5). This out of band System on a Chip incorporated Commercial National Security Algorithm Suite (CNSA), FIPS 140 validation, daily run-time firmware checking, and secure recovery options. Marsh is working towards consensus among data center insurance providers on what solutions may allow enhanced terms and conditions to their clients.