Presentation is loading. Please wait.

Presentation is loading. Please wait.

SafeNet Luna XML Hardware Security Module

Published byRyann Julien Modified over 9 years ago

Similar presentations

Presentation on theme: "SafeNet Luna XML Hardware Security Module"— Presentation transcript:

1 SafeNet Luna XML Hardware Security Module

2 SafeNet Protects Crypto Keys
SafeNet’s Hardware Security Modules are the fastest, most secure, and easiest to integrate solution for protecting identities, applications and transactions. Business Issues SafeNet Solution Need to protect sensitive data, transactions & applications Protect Data at Risk – Most secure HSM with encryption keys always stored in hardware Need to implement controls for compliance Comply w/ Legislation – Proven compliance with mandates such as PCI-DSS and EMV requiring data encryption, complete audit trail Need to minimize cost of deployment and integration Reduce Operational Cost – Unparalleled ease of integration and virtually no maintenance

3 Network-Attached HSMs
Luna SA / SP ProtectHost EFT Luna XML Luna SX  High assurance enterprise-grade HSM 4,000 ops/s Certifications: FIPS Level 3, CC EAL 4+ Full platform support Secure remote administration 10/100 Ethernet interface Protected application execution environment (Luna SP) Extensive algorithm support  High assurance HSM for financial payment systems PIN generation & verification Supports global payment processing, EMV, and Card Issuance APIs 1,200 Visa PIN Verify operations / sec Certifications: FIPS Level 3, CC Easy GUI-based administration  High assurance enterprise-grade HSM for XML environments XML interface (WSDL) encapsulates crypto functions, enabling rapid integration development FIPS Level 3 Extensive algorithm support No client required 2,200 ops/sec OS independent Secure remote administration 10/100/1000 Ethernet interface  Central HSM Management Console Intuitive GUI Easy setup & management of multiple HSM appliances Reduces cost of administration

4 Internal HSMs CA4 Luna PCM Luna PCI ProtectServer Gold
 Root key HSM for true hardware key management FIPS Level 3 certified Extensive algorithm support Supports two-factor trusted path authentication Supports common certificate authorities (Microsoft, Entrust, Verisign, RSA, etc.)  Portable, cost-effective PCMCIA HSM card for hardware key management and crypto acceleration Versions for document signing, key export for registration of tokens, and signing and back up of key material to a token FIPS Level 3 Extensive algorithm support  Cost-effective high- assurance PCI HSM card for customizable hardware key management 600 ops/s Easy GUI-based administration Customizable interface FIPS Level 3 Extensive algorithm support Secure remote administration  Fast, high-assurance PCI HSM card for hardware key management and crypto acceleration 7,000 ops/s FIPS Level 3, CC EAL 4+ Supports two-factor trusted path authentication Extensive Algorithm support

5 SafeNet Luna XML Rapid-to-deploy high-assurance HSM for XML environments Security Most secure HSM for B2B and B2C communications and processes with encryption keys always stored in hardware Certifications: FIPS140-2 Level 3 Tamper resistant Performance RSA signings up to 2,200 ops/sec XML signings up to 1,000 ops/sec Ease of Integration Unparalleled ease and speed of integration XML interface encapsulates crypto functions Client-less Intuitive developer GUI HTTP interface OS & network independent 10/100/1000 Mbps Ethernet interface Cost of Ownership Platform independent Secure remote administration

6 Rapid Deployment with Luna XML
Traditional HSM SafeNet Luna XML OS dependency OS independent Customer Application Customer XML Application Custom built XML service Custom Java layer JCA/JCE API Cryptoki Layer XML Crypto Service From months … … to days! Jan | Feb | Mar | Apr | Jun | … ? Mon | Tue | Wed | Thu | Fri !

7 Luna XML Operational Use
XML Based Application SSL XML SSL SSL XML SSL SSL XML SSL Load balancer Available across multiple sites for DR XML crypto service XML crypto service XML crypto service Crypto object synchronization

8 Luna XML (XML Interface)
Why? Business applications move to XML based architecture. Nature of XML is designed to allow for B2B, B2C inline communication/processing = Security Need! What? 1U Appliance based HSM with an XML interface (WSDL) FIPS validated HSM (4.6.1 FW) 10/100/1000 Mbps Ethernet interface Benefits? Clientless OS independent Customers don’t need to be crypto API gurus(P11/JCA/CAPI) PED Auth only for initial GA release Performance: RSA signings - up to 2200/sec XML signings –up to 1000/sec

9 Luna XML Client Demo Interface
Intuitive GUI interface Easy deployment User friendly management Reduced cost of administration

Download ppt "SafeNet Luna XML Hardware Security Module"

Similar presentations

PKCS-11 Protocol for Enterprise Key Management

PKCS-11 Protocol for Enterprise Key Management
Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab

Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab
© Copyrights 1998 Algorithmic Research Ltd. All rights Reserved D a t a S e c u r i t y A c r o s s t h e E n t e r p r i s e Algorithmic Research a company.

© Copyrights 1998 Algorithmic Research Ltd. All rights Reserved D a t a S e c u r i t y A c r o s s t h e E n t e r p r i s e Algorithmic Research a company.
McAfee One Time Password

McAfee One Time Password
Multi-Application in Smart Card-based Devices Christophe Colas, Chief Software Architect August 2002.

Multi-Application in Smart Card-based Devices Christophe Colas, Chief Software Architect August 2002.
Introduction to z/OS Security Lesson 4: There’s more to it than RACF

Introduction to z/OS Security Lesson 4: There’s more to it than RACF
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Hardware Infotech International is pioneer in producing and providing advanced payment hardware.

Hardware Infotech International is pioneer in producing and providing advanced payment hardware.
Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server 2008. Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),

Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),
Web Services Security Enterprise Architect Summit – 2004 Mark O’Neill CEO.

Web Services Security Enterprise Architect Summit – 2004 Mark O’Neill CEO.
Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.

Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.
1 GP Confidential ©2013 1 GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)

1 GP Confidential © GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)
Dell Compellent and SafeNet KeySecure

Dell Compellent and SafeNet KeySecure
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
Dongyan Wang GlobalPlatform Technical Program Manager

Dongyan Wang GlobalPlatform Technical Program Manager
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Security Controls – What Works

Security Controls – What Works
Sentry: A Scalable Solution Margie Cashwell Senior Sales Engineer Sept 2000 Margie Cashwell Senior Sales Engineer

Sentry: A Scalable Solution Margie Cashwell Senior Sales Engineer Sept 2000 Margie Cashwell Senior Sales Engineer
Core Web Service Security Patterns

Core Web Service Security Patterns

Similar presentations

Ads by Google