Header-Banner

Luna G5

High Assurance Hardware Security Module with a USB Interface

Luna G5

The SafeNet Luna G5 joins a hardware security module (HSM) product line-up widely used by governments, financial institutions and large enterprises for data, applications and digital identities to reduce risk and ensure regulatory compliance.

The Luna G5 HSM builds upon the Luna product family’s long standing industry-validated security capabilities and introduces a new design generation to the SafeNet HSM family. The new design directly connects the HSM to the application server via a USB interface.

  • Backup through Luna key cloning
  • Industry-leading key management in a portable appliance
  • All key material exclusively in hardware
  • Convenient and secure form factor: on-board key storage in a small appliance can hold PKI root key
  • Luna G5 includes a FIPS 140-2 L2 & L3 cryptographic module (validation in process)
  • Includes a CC EAL 4+ cryptographic module (certification in process)
View Характеристики Resource Library

Operating System Support

  • Windows, Linux

Client API Support

  • PKCS#11, Microsoft CryptoAPI (CAPI), Microsoft Crypto API: Next Generation (CNG)
  • Java JCA/JCE
  • Open SSL

Cryptographic Processing

Asymmetric Key Transport and Key Exchange:

  • RSA (1024-8192 bit), PKCS #11, OAEP PKCS#1, Dif.e-Hellman (DH) (1024 bit)
  • Elliptic Curve Diffie-Hellman (ECDH) (numerous curves supported)

Digital Signing and Verification

  • RSA (1024-8192 bit) PKCS#11 & X9.31, DSA (1024-bit), ECDSA KCDSA

ECC Support

  • ECDSA, ECDH
  • Numerous curves supported including NIST P-192 up to P-521, Brainpool, and user-defined.

Symmetric Key Algorithms

  • TDES (double & triple key lengths), RC4, RC5,AES, SEED, ARIA

Message Digest Algorithms

  • SHA-1, HAS-160, SHA-224, SHA-256, SHA-384, SHA-512

Message Authentication Codes

  • HMAC-SHA-1, HMAC-SHA-224, HMAC-SHA-256, HMAC­-SHA-384, HMAC-SHA-512, SSL3­-SHA-1-MAC

Suite B Algorithm Support

  • AES-128, AES-256
  • ECDSA P-256, P-384
  • ECDH P-256, P-384
  • SHA-256, SHA-384, SHA-512 

Random Number Generation

  • AES-DRBG compliant with NIST SP 800-90

Interface Compatibility

  • G5 1.1: USB 1.0 
  • G5 1.2: USB 2.0 

Physical Dimensions

  • 17cm (L) x 21.5cm (W) x 4.3cm (H)
View Возможности и преимущества Resource Library

Security Benefits

  • High-assurance HSM design
  • Secure authentication and access control
  • Defense-in-depth internal key hierarchy
  • Tamper detection and response
  • Backup through Luna key cloning
  • M of N per role
  • Factory installed ECC digital ID (Secure Transport Mode)
  • FIPS-compliant RNG (in process)
  • FIPS 140-2 Level 3 (in process)
  • Common Criteria EAL 4+( in process)

 

Features

  • Full cryptographic API support and developer toolkits
  • Optimized for Suite B performance
  • User-specified ECC parameters
  • Korean algorithm support
  • Support for NIST and Brainpool ECC Curves
View Обзор Resource Library