Crypto Store By ID3 > Products > Thales > Thales Luna S700 Series

Thales Luna S700 Series

Luna S Series: Multi-factor (PED) Authentication for high assurance use cases.

The SafeNet Luna HSM from Thales is a network attached Hardware Security Module (HSM) designed for high performance non-payments cryptographic processing, message authentication, comprehensive key management, and general-purpose cryptographic processing.



Note: RRP shown only. Accurate pricing, specification and availability will be provided upon quote issuance.


Luna S Series: Multi-factor (PED) Authentication for high assurance use cases.

Secure your sensitive data and critical applications by storing, protecting and managing your cryptographic keys in SafeNet Luna Network Hardware Security Modules (HSMs) – high-assurance, tamper-resistant, network-attached appliances offering market-leading performance.

Strong security – keys remain in hardware

The ultimate level of protection is afforded to sensitive cryptographic processing that often operates within the less secure environment of servers. SafeNet HSM is FIPS 140-2 Level 3-validated, and features tamper-protected security that safeguards against physical attacks on the HSM to obtain sensitive information.
Upon detection of a physical attack, the internal key storage memory is completely erased. Further, cryptographic keys are never exposed outside the HSM in clear form.
Secure storage and processing offers customers a level of security unavailable from software alternatives, while providing a certified level of confidentiality and integrity that meets customer expectations and the security demands of industry organizations.

Extensive APIs/toolkits and customization
A wide range of application programming interfaces (APIs) are available to assist in adherence of the cryptographic application to industry security standards and platform
environments. This includes the broadest suite of PKCS#11 function sets available on the market, a Java JCA/JCE, JCProv, and Microsoft CryptoAPI/ CNG provider implementation, and seamless integration with Open SSL. The software development kit allows an unsurpassed level of flexibility and extensibility—providing the ability to produce custom cryptographic applications – including completely new algorithms—and to be securely downloaded and executed within the protected confines of the HSM.

Easy management
The intuitive graphic user interface (GUI) simplifies HSM device administration and key management using easy-to-understand navigation and user interaction. Urgent and time-critical management tasks—such as key modification, addition, and deletion—can be securely performed from remote locations, reducing management costs and response times.

Flexible programming
SafeNet ProtectServer HSMs offer a unique level of flexibility for application developers to create their own firmware and execute it within the secure confines of the HSM. Known as functionality modules, the toolkits provide a comprehensive facility to develop and deploy custom firmware. A full-featured software emulator rounds out the flexible development tools, enabling developers to test and debug custom firmware from the convenience of a desktop computer. This emulator also serves as an invaluable tool to test
applications without the need to install a SafeNet ProtectServer HSM. When ready, a developer simply installs the HSM and redirects communication to the hardware. No software changes are necessary.

Smart cards provide the highest security and administrative convenience for secure backup, recovery, and transfer of cryptographic keys. Upgrades can be cost-effectively performed at the infield location, avoiding the expense of returning the product to the service location.

Multiple slots
SafeNet ProtectServer PCIe HSM supports multiple cryptographic key storage slots. Storage slots function similarly to a smart card reader with multiple card slots, but without the need for a physical card reader. These virtual slots are effectively secure folders for keys, with each folder secured by a unique user and security officer password. This allows a single ProtectServer HSM to be used by multiple applications, for greater cost savings and flexibility.

Additional information

Weight 12.7 kg
Dimensions 48.2 × 53.5 × 4.3 cm

Standard, Enterprise, Maximum

Supported Operating Systems

Windows, Linux, Solaris, AIX, Virtual: VMware, Hyper-V, Xen, KVM

API Support

PKCS#11, Java (JCA/JCE), Microsoft CAPI and CNG, OpenSSL, REST API for administration

Security Certifications

FIPS 140-2 Level 3 – Password and Multi-Factor (PED), eIDAS CC EAL4+ (AVA_VAN.5 and ALC_FLR.2) against the Protection Profile 419221-5 *

Host Interface

2 options: 4 Gigabit ethernet ports with Port Bonding, or 2 x 10G fiber network connectivity and 2 x 1G with Port Bonding, IPv4 and IPv6

Input Voltage

100-240V, 50-60Hz

Power Consumption

110W maximum, 84W typica


Dual hot-swap power supplies/, Field-serviceable components/, Mean Time Between Failure (MTBF) 171, 308 hrs

Management & Monitoring

HA disaster recovery/, Backup and restore hardware to hardware on-premises or in the cloud /, SNMP, Syslog


Full Suite B support/, Asymmetric: RSA, DSA, Diffie-Hellman, Elliptic Curve Cryptography (ECDSA, ECDH, Ed25519, ECIES) with named, user-defined and Brainpool curves, KCDSA, and more /, Symmetric: AES, AES-GCM, Triple DES, DES, ARIA, SEED, RC2, RC4, RC5, CAST, and more /, Hash/Message Digest/HMAC: SHA-1, SHA-2, SM3, and more /, Key Derivation: SP800-108 Counter Mode /, Key Wrapping: SP800-38F /, Random Number Generation: designed to comply with AIS 20/31 to DRG.4 using HW based true noise source alongside NIST 800-90A compliant CTR-DRBG /, Digital Wallet Encryption: BIP32 /, 5G Cryptographic Mechanisms for Subscriber Authentication: Milenage, Tuak, and Comp128

Luna S Series Models

S700 Standard, S750 Enterprise, S790 Maximum, S790-10G Maximum

Customer Reviews

Customer Rating

0 Ratings
Stars 5
Stars 4
Stars 3
Stars 2
Stars 1
Be the first to review “Thales Luna S700 Series”

Your email address will not be published. Required fields are marked *


There are no reviews yet.

Item added To cart