Skip Navigation
  • Overview

    Luna SA for Government is the choice for agencies requiring strong security for digital signatures, cryptographic key storage, transactional acceleration, certificate signing, code signing, bulk key generation, data encryption, DNSSEC, and more.  Derived from industry leading technology, the Luna SA for Government is manufactured, sold, and supported in the United States exclusively by SafeNet Assured Technologies.

    Approach to Key Security: Keys in Hardware

    Luna SA for Government is the most trusted general purpose HSM on the market in part because of its unique approach to protecting cryptographic keys. Unlike other methods of key storage which move keys outside of the HSM into a “trusted layer,” the keys-in-hardware approach protects the keys throughout their lifecycle within the confines of the Luna SA for Government HSM. This method ensures that keys always benefit from both physical and logical protections of the HSM and reduces the audit burden.

    Scalable Security for Virtual and Cloud Environments

    Luna SA for Government can be separated into cryptographically isolated partitions, with each partition acting as if it was an independent HSM This provides a tremendous amount of scalability and flexibility, as a single HSM can protect the cryptographic keys of several independent applications. Luna SA for Government partitions are designed with independent access controls and key storage, allowing use in multi-tenant environments.

    Robust High Availability

    Multiple HSMs can be grouped together to provide high availability, load balancing and scalable performance.

    Flexible Backup and Disaster Recovery Options

    Luna SA for Government provides secure, auditable and flexible options to simplify backup, duplication, and disaster recovery

    Secure Audit Logging

    Luna SA for Government can be configured to selectively log HSM events for security auditing purposes.

    Network Shareable for Easy Deployment

    Ethernet connectivity enables flexible deployment and scalability.

    Available in Two Performance Models

    Luna SA for Government is available in two performance models; Luna 7000 and Luna SA 1700. Luna SA 7000 is a high performance HSM capable of best in class performance across a breadth of algorithms including ECC, RSA, and symmetric transactions. Luna SA 7000 also features a dual, hot- swappable power supply that ensures consistent performance and no down-time.

    The low performance variant, Luna 1700, includes a single power supply, and is capable of 1700 RSA 1024-bit transactions per second.

    Algorithm

    Luna SA 1700

    Luna SA 7000

    RSA-1024

    1,700

    7,000

    RSA-2048

    350

    1,200

    ECC P256

    570

    2,000

    ECIES

    200

    300

    AES-GCM

    3,600

    3,600

  • Features and Benefits

    Most Secure

    • Keys in hardware
    • Remote Management
    • Secure transport mode for high-assurance delivery
    • Multi-level access control
    • Multi-part splits for all access control keys
    • Intrusion-resistant, tamper- evident hardware
    • Suite B algorithm support
    • Secure decommission
    • Secure Audit Logging
    • Strongest cryptographic algorithms

    Sample Applications

    • PKI key generation & key storage (online CA keys & offline CA keys)
    • Certificate validation & signing
    • Document signing
    • Transaction processing
    • Database encryption
    • Smart card issuance
  • Technical Specifications

    Operating System Support

    • Windows, Linux, Solaris, AIX, HP-UX
    • Virtual: VMware, Hyper-V, Xen
    • Cryptographic Support
    • Full Suite B support
    • RSA (1024-8192), DSA (1024-3072), Diffie-Hellman, KCDSA, Elliptic Curve Cryptography (ECDSA, ECDH, ECIES) with named, user-defined and Brainpool curves
    • Symmetric: AES, RC2, RC4, RC5, CAST, DES, Triple DES, ARIA, SEED
    • Hash/Message Digest/HMAC: SHA-1, SHA-2 (224-512), SSL3-MD5-MAC, SSL3-SHA-1-MAC
    • Random Number Generation: FIPS 140-2 approved DRBG (SP 800-90 CTR mode)
    • Cryptographic APIs: PKCS#11, Java (JCA/JCE), Microsoft CAPI and CNG, OpenSSL

    Physical Characteristics

    • Standard 1U 19in. rack mount chassis
    • Dimensions: 19” x 21” x 1.725” (482.6mm x 533.4mm x 43.815mm)
    • Weight: 28lb (12.7kg)
    • Input Voltage: 100-240V, 50-60Hz
    • Power Consumption: 180W maximum, 155W typical
    • Temperature: operating 0°C – 35°C, storage -20°C – 60°C
    • Relative Humidity: 5% to 95% (38°C) non-condensing

    Safety and Environmental Compliance

    • UL, CSA, CE
    • FCC, KC Mark, VCCI, CE
    • RoHS, WEEE

    Host Interface

    • Dual Gigabit Ethernet ports

    Reliability

    • Mean Time Between Failure (MTBF) 66,561 hrs
     
 

Connect with us

Learn more about our products, solutions and services Contact SafeNet AT