Information Security Leadership

SafeNet is a global leader in information security, protecting data at rest, data in motion, data in use, software and license management with the broadest range of security solutions in the world. The Company protects critical business data, communications, financial transactions, and digital identities through a full spectrum of encryption technologies.

Luna CA4


Maintain PKI Integrity

The SafeNet Luna CA4 addresses the security and operational needs required to maintain the integrity of PKIs with true hardware key management, trusted path multi-person authentication, and direct hardware-to-hardware backup.

Optimal Root Key Protection

The SafeNet Luna CA4 offers the strictest hardware security for Certificate Authorities (CAs) issuing digital identities in PKIs. Luna CA4 protects the PKI root key and performs all key management, key storage, and key operations (such as digital signing) exclusively within hardware.

Comprehensive security policies, split user roles, and two-factor, trusted path authentication prevent unauthorized access to critical root keys. Direct hardware-to-hardware backup permits auditable backups of key material for backup and disaster recovery.

Integrates with Leading Certificate Authority Software

Tight integration with leading Certificate Authority software makes it easy to add security and integrity to enterprise PKIs:

  • Microsoft
  • Entrust
  • VeriSign
  • RSA; and more


Luna CA4 Brief :: PDF File Luna CA4 Product Brief

Luna PCI-E


Dedicated Hardware-Based Key Management

SafeNet Luna PCI-E, is designed to protect cryptographic keys and accelerate sensitive cryptographic operations across a wide range of security applications. Luna PCI-E offers dedicated hardware-based key management to protect sensitive cryptographic keys from attack.

Life-Cycle Protection through Quality Design

The high-security hardware design ensures the integrity and protection of encryption keys throughout their life cycle. All digital signing and verification operations are performed within the HSM to increase performance and maintain security.


Luna PCI-E Brief :: PDF File Luna PCI-E Product Brief

Luna XML


Fastest Integration Time

Luna XML is the only hardware security module on the market using an XML interface for protecting Web applications that reduces the time required to integrate cryptographic security with XML Web services from months to days. The Luna  XML  features a completely platform-independent interface and scales as a Web service to meet your demands as applications grow.

Highest security

SafeNet Luna XML contains a FIPS 140-2 Level 3-validated cryptographic module protecting critical cryptographic keys and accelerates sensitive cryptographic operations across a wide range of security applications.

The Luna XML integrated security features include tamper-evident seals, intrusion detection switches, shielded connectors, and multi-level access control and authentication policies.

Accelerated Cryptographic Performance

SafeNet Luna XML performs rapid processing of cryptographic commands with 1200 1024-bit RSA signings per second on one application server, and up to 2200 signings per second for multiple application servers.

The Luna XML features symmetric and asymmetric cryptographic performance, and processes 700 XML signings on 1 KByte XML documents on one application server, or 1000 XML signings for multiple application servers.


Luna XML Brief :: PDF File Luna XML Product Brief

Luna G5


The SafeNet Luna G5 joins a hardware security module (HSM) product line-up widely used by governments, financial institutions and large enterprises for data, applications and digital identities to reduce risk and ensure regulatory compliance.

The Luna G5 HSM builds upon the Luna product family’s long standing industry-validated security capabilities and introduces a new design generation to the SafeNet HSM family. The new design directly connects the HSM to the application server via a USB interface.

  • Backup through Luna key cloning
  • Industry-leading key management in a portable appliance
  • All key material exclusively in hardware
  • Convenient and secure form factor: on-board key storage in a small appliance can hold PKI root key
  • Luna G5 includes a FIPS 140-2 L2 & L3 cryptographic module (validation in process)
  • Includes a CC EAL 4+ cryptographic module (certification in process)


Luna G5 Brief :: PDF File Luna G5 Product Brief 

Luna SA

Luna-SA-front-highAward-Winning Hardware Security Module


Luna SA is the choice for enterprises requiring strong cryptographic security for paper-to-digital initiatives, digital signatures, DNSSEC, hardware key storage, transactional acceleration, certificate signing, code or document signing, bulk key generation, data encryption, and more.

Scalable Security for Virtual and Cloud Environments

  • Virtual Platform Support- vSphere, Microsoft Hyper-V, and Citrix XenServer
  • Digital Certificate Authentication

Market Leading Performance

  • The only HSM on the market that delivers high performance implementations for the full range of Suite B cryptographic algorithms.
  • First HSM to integrate with Microsoft SQL Server 2008 & integration with SQL Server 2008 R2
  • Cryptographic acceleration up to 6,000 1024-bit RSA tps; 400 384-bit ECC tps

Management and Operational Cost Savings

  • Central Administration -Remote PED
  • Cost Savings - PKI Bundle

High Assurance Trust HSM

  • FIPS validated (Luna SA 5.0, in process)
  • CC  EAL 4+ certified cryptographic module (Luna SA 4.1 key card)
  • Dual, hot-swappable power supply ensuring consistent performance and no down-time
  • Ethernet connectivity for flexible deployment/communication with other network devices

Secure Hardware Key Management and Cryptographic Processing

SafeNet Luna SA HSM ensures the integrity and security of cryptographic operations in a robust, high- availability appliance. Luna SA is capable of up to 6,000 RSA and 400 ECC transactions per second and offers optional standalone authentication to protect the most demanding security applications.

Remote Central Administration

The Remote PED (PIN entry device) is an authentication device that connects to a remote Windows workstation via USB, and communicates over a secure network connection to a Luna SA. Full PED functionality facilitates management of security administration functions by offering the security administrator to centrally manage administration rights remotely by simply inserting the required key, and entering the secret PIN into the PED.

Cost Savings with PKI Bundle

With the SafeNet Luna SA PKI Bundle solution, product and maintenance costs are dramatically reduced by combining HSM functionality that usually requires 2 or more HSMs into a single HSM "bundle" of modular functions. For CAs with certificates and root keys, for example, rather than requiring separate HSMs for key generation and key export for offline and online root CAs respectively, the requirements can be fulfilled by only 1 Luna SA HSM which stores keys in hardware achieving FIPS 140-2 L3 security (Luna SA version 4.4).


Safenet :: Luna SA 5.0 Diagram


Luna SA Brief :: PDF File Luna SA Product Brief

Page 1 of 6

Login Form