Microsoft Azure has announced the General Availability of FIPS 140-2 Level 3 HSM for Azure Key Vault. This means that Azure Key Vault Premium HSMs are now PCI DSS and PCI 3DS certified, meeting the security requirements of the Payment Card Industry Data Security Standard and Standard 3- Payment Card Industry D Secure. This new capability is available to both new and existing customers at no additional cost.
All new keys and key versions created in Key Vault Premium will be protected by these new HSMs at no extra charge. The fleet of HSMs powering Azure Key Vault has been updated to provide customers with the highest levels of protection in the industry. SLAs, performance, and other specifications remain unchanged. Existing key versions will continue to work with the original FIPS 140-2 Level 2 HSMs in all geographies except the United Kingdom.
Customers are encouraged to create new key versions to take advantage of these improvements and migrate their workloads to use these new key versions. Detailed information on which HSM platform protects your key versions can be found in the About keys and Types of keys, algorithms and operations section. Additionally, guidance on choosing the right key management solution for your needs is provided in the How to choose the right key management solution article.
Availability for UK customers will be announced at a later date. This announcement marks a significant step in enhancing the security and compliance capabilities of Azure Key Vault, ensuring that customers can trust their data to be protected at the highest levels.
Article Source
https://azure.microsoft.com/en-us/updates/general-availability-improvements-in-azure-key-vault/