Luna SA

Luna SA is a future-friendly HSM with a wide range of configurations available.

Award Winning HSM

SafeNet Luna SA features an integrated hardware security module (HSM) offering hardware key management and cryptographic acceleration. Luna SA is award winning application protection through powerful cryptographic processing and hardware key management.

• FIPS validated and CC  EAL 4+ certified cryptographic module
• Ethernet connectivity for flexible deployment/communication with other network devices
• First HSM to integrate with Microsoft SQL Server 2008
• Digital Certificate Authentication
• Central Administration -Remote PED
• Cost Savings - PKI Bundle

Remote Central Administration

New to the latest Luna SA version is Remote PED (PIN entry device), an authentication device that connects to a remote Windows workstation via USB, and communicates over a secure network connection to a Luna SA. Full PED functionality facilitates management of security administration functions by offering the security administrator to centrally manage administration rights remotely by simply inserting the required key, and entering the secret PIN into the PED.

Cost Savings with PKI Bundle

With the SafeNet Luna SA PKI Bundle solution, product and maintenance costs are dramatically reduced by combining HSM functionality that usually requires 2 or more HSMs into a single HSM "bundle" of modular functions. For CAs with certificates and root keys, for example, rather than requiring separate HSMs for key generation and key export for offline and online root CAs respectively, the requirements can be fulfilled by only 1 Luna SA HSM which stores keys in hardware achieving both FIPS 140-2 L3 and 140-2 L 3 security.

For Solution Partners/Integrators/Developers

As a component of a multi-part solution, the success of a SafeNet HSM relies on global partners integrating with the HSM as quickly and easily as possible, all for an attractive price. SafeNet remains at the forefront of global ineroperability, offering integrations with latest technogies from the following to name a few. To request specific integration guides, click on the partner of your choice:

Case Studies

• Swedish National Board of Healthcare Secures Identity Access and Smartcard Managment with Microsoft ILM
• Antwerp Port Authority Protects eInvoices
• Security Biometric Protects America's Transportation System
• Large Automotive Manufacturer Implements Employee Access Control 

 Operating Systems

• Windows 2000, 2003, 2008
• Solaris 9, 10 (SPARC and x86)
• Linux RedHat Enterprise 4,5
• AIX 5.3
• HP-UX 11i (PA-RISC and Itanium)
• VM Ware

Cryptographic APIs

• PKCS#11, Microsoft CAPI, and CNG
• JCA/JCE
  

Cryptographic Functions

• True hardware accelerated random number generation (Annex C of ANSI X9.17)
• Symmetric and asymmetric key pair generation
• Encryption and decryption
• RSA
• Digital signing

Industry Regulatory Standards

• Includes a FIPS 140-2 Level 3 validated cryptographic module
• Includes a CC EAL 4+ certified cryptographic module
• U/L 1950 (EN60950) & CSA C22.2 compliant
• FCC Part 15 - Class B
• RoHS compliant
• BAC and EAC ePassport certification

 Features:

• PKI Bundle
• Multi-level access control
• Intrusion-resistant, tamper-evident hardware
• Strongest cryptographic algorithm
• Suite B Algorithm Support
• Keys in hardware
• Cryptographic acceleration of up to 6000 TPS in certain test environments
• Allows up to 20 unique partitions
• Remote PED
  

Benefits:

• Compliant: meets industry regulatory standards
• Customizable: wide range of configurations
• Future-proof: software is upgradeable