Luna SA is designed with the security of your cryptographic keys in mind, and is the choice for enterprises requiring strong security for cryptographic keys. As a general purpose hardware security module (HSM), Luna SA can be easily integrated into a wide range of applications to accelerate cryptographic operations, secure the crypto key lifecycle, and acts a root of trust for your entire encryption infrastructure.

The Thales HSM Luna K7 is approved for use in NATO Certificate Authorities for NATO SECRET, as long as it is used in the approved FIPS 140-2, Level 3 configuration.

Approval is contingent upon the Thales HSM Luna K7 being configured and administered in accordance with the manufacturer's configuration guidance.

Sample Applications:

• PKI key generation & storage (online and offline CA keys)
• SSL/TLS
• Code Signing
• Certificate Signing & Validation
• Document signing
• HSMaaS – Private & Public Cloud Environment
• Transaction processing
• Database encryption
• Smart card issuance
• Hardware root of trust for the Internet of Things (IoT)
• Blockchain
• Compliance including GDPR, PCI-DSS, HIPAA, eIDAS

Security at a Glance:

• Keys always remain in FIPS 140-2 Level 3-validated, tamper-evident hardware
• High-assurance delivery with secure transport mode
• De facto standard for the cloud
• Multiple roles for strong separation of duties
• Multi person MofN with multi-factor authentication for increased security
• Meet compliance needs for GDPR, HIPAA, PCI-DSS, eIDAS
• Secure audit logging
• Remote management
• Multi-part splits for all access control keys
• Secure decommission

Features:

• Dual Hot Swap Power Supplies
• Field Serviceable Components
• Software upgradable
• Multiple Roles for Administration
• Strong Separation of Duties
• Partitioning and strong cryptographic separation
• Load Balancing and Scalability