A Hardware Security Module, HSM, is a dedicated crypto processor designed for the protection of keys throughout their lifecycle. It is validated as secure by third parties and is a Trusted Anchor.
Hardware Security Modules secure the things we use everyday.
Web security: SSL/TLS, DNSSEC
Mobile devices: Apps, mobile payments, and the devices
Transactions: Credit card data, Personal Identification Numbers (PIN), Point of Interaction devices (POI)
Identities: Biometrics, National ID, Passports
Entertainment: Streaming services, videogame consoles, and DVR
Documents: For the government, hospitals, and the court system
Portfolio of General Purpose HSMs
Luna SA/SP: Network Attached and Scalable
Luna PCI-E: High Performance Cryptographic Processor
Luna G5: Offline Key Archive/Starter HSM
Keys in Hardware
ROI & Ecosystems
Reliability - HA
Monitoring - (SNMP, logging)
Remote Management, Remote Backup
Virtualization & Cloud
SafeNet is the root of trust for more deployments than any other provider with products certified to the highest standard. With over 400 active integrations they have one of the broadest ecosystems on the market.
SafeNet Hardware Security Modules provide the highest level of security by always storing cryptographic keys in hardware. SafeNet HSMs provide a secure crypto foundation as the keys never leave the intrusion-resistant, tamper-evident, FIPS-validated appliance. Since all cryptographic operations occur within the HSM, strong access controls prevent unauthorized users from accessing sensitive cryptographic material. Additionally, Gemalto also implements operations that make the deployment of secure HSMs as easy as possible, and our HSMs are integrated with SafeNet Crypto Command Center for quick and easy crypto resource partitioning, reporting and monitoring.
SafeNet HSMs adhere to rigorous design requirements and must pass through stringent product verification testing, followed by real-world application testing to verify the security and integrity of every device.
SafeNet HSMs are cloud agnostic, and are the HSM of choice for Microsoft, AWS and IBM, providing a “rentable” hardware security module (HSM) service that dedicates a single-tenant appliance located in the cloud for customer cryptographic storage and processing needs.
With SafeNet Hardware Security Modules, You Can:
Address compliance requirements with solutions for Blockchain, GDPR, IoT, paper-to-digital initiatives, PCI DSS, digital signatures, DNSSEC, hardware key storage, transactional acceleration, certificate signing, code or document signing, bulk key generation, data encryption, and more. Keys are generated, and always stored in the intrusion-resistant, tamper-evident, FIPS-validated appliance, providing the strongest levels of access controls. Create partitions with a dedicated Security Office per partition, and segment through admin key separation.
SafeNet HSMs Play Well with Others
A broad range of innovative technology partners utilize SafeNet Hardware Security Modules as roots of trust, relied upon to secure sensitive data, transactions, applications, and more around the world.
SafeNet Luna General Purpose HSMs:
Available in a wide range of form factors and performance options, SafeNet Luna General Purpose HSMs safeguard the cryptographic keys used to secure transactions, applications, and sensitive data.
SafeNet Luna Network HSM is a network-attached HSM protecting encryption keys used by applications in on-premises, virtual, and cloud environments. SafeNet Luna Network HSMs are both the fastest and most secure HSMs on the market. Increase your return on investment by allowing multiple applications or business units to share a common HSM platform.
Maintaining keys in hardware throughout their life-cycle is a best practice mandated by system security auditors and certification bodies responsible for attesting to the security status of cryptographic systems.
The SafeNet Luna Backup HSM ensures your sensitive cryptographic material remains strongly protected in hardware even when not being used. You can easily backup and duplicate keys securely to the SafeNet Luna Backup HSM for safekeeping in case of emergency, failure or disaster.
Available in network attached and PCIe form factors, SafeNet ProtectServer Hardware Security Modules (HSMs) are designed to protect cryptographic keys against compromise while providing encryption, signing and authentication services to secure Java and sensitive web applications.
SafeNet ProtectServer HSMs offer a unique level of flexibility for application developers to create their own firmware and execute it within the secure confines of the HSM. Known as functionality modules, the toolkits provide a comprehensive facility to develop and deploy custom firmware.
Managing hardware security modules virtually is now not only possible, but easy for administrators. With SafeNet Crypto Command Center, organizations easily provision and monitor crypto resources for their SafeNet Luna Network HSMs and reduce IT infrastructure costs.
Combining SafeNet Crypto Command Center with our SafeNet HSMs, IT departments can leverage a crypto hypervisor to deliver on-demand, elastic cryptographic services for data protection via cloud environments.