When you factor the total impact of firmware signing on the product lifecycle, a HSM is a drop in a bucket...