Thales is excited to announce Luna HSM v7.7.0 and Luna HSM Universal Client v10.3. This release provides high assurance for customers with security and compliance use cases requiring FIPS, Common Criteria, eIDAS, and NITES certifications. Customers also have new and flexible options for key storage, as well as greater control over key material.
What’s New at a Glance:
- Scalable Key Storage: Allows unlimited key storage for customer applications requiring a greater number of keys than the HSM can physically store.
- Per Key Authorization (PKA): Provides granular control of key material for high assurance applications. Supports eIDAS requirement of sole control over keys for Trust Services.
- Third-Party / Internal CA Signing with NTLS Certs: Customers now have greater control over their HSM certificates with the option to sign appliance and client-side NTLS certificates with an internal or third-party CA. This supports use cases that prohibit any type of self-signed certificate deployments in order to pass internal audits.
- Local Backup: Backup and restore with a direct USB connection to the appliance. Helps satisfy audit and compliance needs as backups and restores are performed locally in front of auditors without the network aspect.
- Certifications:
- Common Criteria Certified EAL4+ (AVA_VAN.5 and ALC_FLR.2) Certificate Number CC-20-195307 against the eIDAS Protection Profile (EN 419221-5).
- FIPS 140-2 Level 3 in progress with the report now being reviewed by NIST.
- NITES certification also in progress
Luna HSM v7.7.0 and Luna HSM Universal Client v10.3. are field releases. The current factory version shipping is v7.2.0 with firmware v7.0.3, which can be updated to v7.7.0.
Customers with active maintenance contracts can upgrade and take advantage of the new capabilities. Luna HSM v7.7.0 can be downloaded from the Thales Support Portal (Knowledge Base Article: KB0022981).
For a comprehensive list of release components and additional features such as: FM and STC enhancements; new mechanisms such as SHA3, 5G and SM2/SM4; and new OS support, please see the customer release notes available on Thales Docs.
Questions? Please contact your Thales Representative.