Specifications/Technical Information
Thales
Thales
specification
Luna series/general-purpose HSM
| model | Luna7 network appliance |
Luna G5 | Luna7 PCIe |
|---|---|---|---|
| exterior |
|
|
|
| connection type |
network type |
USB type |
PCI Express bus type |
| Enclosure size Width (mm) x Depth (mm) x Height (mm) |
482.6×533.4× |
170×215×43 |
PCI Express board |
| Weight (Kg) |
12.7 |
1.4 |
No Data |
| Power consumption (W) |
110W (maximum) |
20 |
18W (maximum) |
| Number of outlets (pieces) |
2※ |
1 |
- |
| Operating voltage (V) |
100-240 |
100-240 |
3.3 |
| Guaranteed operation temperature (°C) |
0-35 |
0-60 |
0-50 |
* A separate outlet is required for the backup cabinet (backup HSM is the same)
payShield Series/Payment HSM
Physical specifications
| model | payShield Series/Payment HSM |
|---|---|
| exterior |
|
| shape |
1U 19 rackmount kit |
| size |
482.6×736.6×44.5mm (19×29×1.75) |
| weight |
15.9kg (35lbs) |
| Voltage |
90 to 264 VAC |
| power consumption |
60W (maximum) |
| Operating temperature |
10℃~40℃ |
| humidity |
10% to 90% (non-condensing) |
Security
| FIPS 140-2 Level3 certified |
| PCI HSM v3 Certified |
| Two-factor authentication with physical key and smart card |
| Smart card multi-factor authentication |
encryption algorithm
| DES and Triple-DES key lengths 112 & 168 bits |
| AES key lengths 128, 192 & 256 bits |
| RSA (up to 4096 bits) |
| HMAC, MD5, SHA-1, SHA-2 |
Product model/option
| performance | 25, 60, 250, 1000, 2500 calls per second (cps) |
|---|---|
| Remote management | Remote management, monitoring |
| local master key | up to 20 partitions |
Cipher Trust Manager/Key Management
| [Key management] | physical appliance | virtual appliance Cloud deployable |
||
|---|---|---|---|---|
| exterior |
|
|
|
|
| model |
k570 |
k470 |
k470v |
k170v |
| Maximum number of keys |
1,000,000 |
1,000,000 |
1,000,000 |
25,000 |
| Maximum concurrent connections number of clients (cluster unit) |
1,000 |
1,000 |
1,000 |
100 |
| FIPS-certified |
FIPS140-2 Level3 |
FIPS140-2 Level1 |
FIPS140-2 Level1 |
FIPS140-2 Level1 |
| API support |
RESTAPINAE-XML |
RESTAPINAE-XML |
RESTAPINAE-XML |
RESTAPINAE-XML |
| management |
SNMPv1/2/3, NTP, Syslog |
SNMPv1/2/3, NTP, Syslog |
SNMPv1/2/3, NTP, Syslog |
SNMPv1/2/3, NTP, Syslog |
connector
| application level encryption in |
product name |
Cipher Trust Developer Suite |
|---|---|---|
| function |
Application integration with SDK |
|
| 提供API |
TDE (PKCS#11), ICAPI (C language), JCE/JCA, XML, REST |
|
| File system encryption (transparent) |
product name |
CipherTrustTransparentEncryptionSuite |
| function |
Provides encryption at the file system level transparent to applications |
|
|
-Encryption processing for each folder/file |
||
|
- Can also be used for full encryption of DB files |
||
| Database encryption (column unit) |
product name |
Cipher Trust Database Suite |
| function |
Column-by-column encryption for supported databases |
|
| tokenization | product name |
Cipher Trust Tokenization |
| function |
Provides application integration, tokenization and masking |
|
| 提供API |
RESTAPI |
|
| KMIP (Key Management Interoperability Protocol) |
product name |
Cipher Trust Enterprise Key Management |
| function |
KMIP key federation integration |
|
|
IBM, MongoDB, NetApp, Nutanix, VMWare, etc... |
||
| cloud service encryption key BYOK key lifecycle management |
product name |
Cipher Trust Cloud Key Manager (CCKM) |
| function |
Centralized management, control and lifecycle management of multi-cloud encryption keys for IaaS/PaaS/SaaS |
|
|
NextGen KeySecure can be used as a CCKM key source (key vault) |
Inquiry/Document request
In charge of Macnica Thales Co., Ltd.
- TEL:045-476-2010
- E-mail:thales-sales@macnica.co.jp
Mon-Fri 8:45-17:30
