Software copy protection, license management, user authentication, internet security and smartcard technology

Luna CA3 Root Key Hardware Security Module


Luna® CA3 offers a complete hardware security solution for the protection of sensitive root keys at the heart of PKI installations.

Overview

The Luna CA³ addresses the security and operational needs required to maintain the integrity of PKIs with true hardware key management, trusted path multi-person authentication, and direct hardware-to-hardware backup. Featuring comprehensive key management technology, FIPS 140-1, Level 3 validation and PKCS#11 compatibility, Luna CA3 is the trusted choice and de facto standard for Root Key protection.

Solutions

Luna CA³ offers the strictest hardware security for Certificate Authorities (CA) issuing digital identities in PKIs. Luna CA³ protects the PKI root key with FIPS 140-1, Level 3 validated hardware that performs all key management, key storage, and key operations (such as digital signing) exclusively within hardware. Comprehensive security policies, split user roles, and two-factor, trusted path authentication prevent unauthorized access to critical root keys. Direct hardware-to-hardware backup permits auditable backups of key material for backup and disaster recovery. Tight integration with leading Certificate Authority software, including Microsoft Certificate Services and Entrust Authority, makes it easy to add security and integrity to enterprise PKI.

Highlights

  • Secure Key Storage
    Keys are 3DES encrypted, encoded with M of N encryption, and stored on a tamper-proof hardware security token to ensure their integrity.
  • Hardware Key Management
    Hardware-based key lifecycle management from generation, verification, storage, and backup. All key operations are performed exclusively within hardware to prevent unauthorized access to your keys.
  • Two-factor Trusted Path Authentication
    True two-factor, trusted path, multi-person authentication of HSM administrative users to prevent unauthorized access to sensitive HSM administration functions.
  • Unparalleled Support and Integration
    Luna CA³ is fully integrated with the most popular Certificate Authorities, including Microsoft Certificate Services, Entrust Authority, VeriSign, and many more. Support for PKCS#11 Open API and Microsoft CryptoAPI allow easy integration with your custom solutions.
  • FIP 140-1, Level 3 Validated Root Key Protection
    Luna CA3 is FIPS 140-1, Level 3 validated and meets Recommended Industry Best Practices to provide the highest levels of security.

Related Documents

Attachment: Luna CA3 Product Brief


Tip a friendE-mail this
Printer friendlyPrint this

Perico AS, Trollåsveien 36, 1414 Trollåsveien, Tlf: +47 22064050, info@perico.no