Thales HSM Luna PCIe A790

Code: 10-72-070-A790-1Y 10-72-070-A790-2Y 10-72-070-A790-3Y 10-72-070-A790-4Y 10-72-070-A790-5Y Choose variant
€21 623 €25 376 €27 520 €30 737 €33 953 from €21 623 €26 163,83 incl. VAT €30 704,96 incl. VAT €33 299,20 incl. VAT €37 191,77 incl. VAT €41 083,13 incl. VAT from €26 163,83 incl. VAT
In stock In stock In stock In stock In stock Choose variant
HSM price including maintenance for: ?
Chosen variant is not available. Reset selected parameters.

THALES Luna PCIe A790 is the highest-performance model in the PCIe HSM A Series and is designed for environments with a high volume of cryptographic operations. The device utilizes a certified hardware security module in which all cryptographic keys are protected within a tamper-resistant component that complies with FIPS 140-2 Level 3 and Common Criteria EAL4+ standards. The platform also supports deployment in solutions requiring QSCD compliance.

There are hundreds of scenarios where you can use seamlessly the HSM to secure your sensitive data/records. Let us know, we are always happy to help you.

Download THALES LUNA PCIe Product Brief.

Detailed information

Quantity
discounts

Free shipping
over 300 EUR

Quick process
& shipping

We accept
online payments

Product detailed description

Key Features

  • Maximum performance within the Luna PCIe HSM family
  • Hardware protection of cryptographic keys
  • Acceleration of large-scale cryptographic operations
  • FIPS 140-2 Level 3 and FIPS 140-3 Level 3 certification
  • Password-based authentication
  • Support for large-scale enterprise and cloud environments
  • Advanced security and auditing features

 

Performance and specifications

  • RSA-2048: up to 10,000 operations/s
  • ECC P-256: up to 22,000 operations/s
  • AES-GCM: up to 17,000 operations/s
  • Key memory: 32 MB (newer firmware up to 64 MB)
  • Form factor: PCIe card
  • Designed for environments with high cryptographic processing requirements

 

Typical use

  • Qualified trust services
  • Data centers with high cryptographic load
  • Massive TLS/SSL termination
  • National PKI infrastructure
  • Environments with high demand for the number of issued/renewed certificates
  • IoT infrastructure
  • Enterprise PKI infrastructure

 

Supported Algorithms & Cryptography

  • Full Suite B support
  • Asymmetric: RSA, DSA, Diffie-Hellman, ECC (ECDSA, ECDH, Ed25519, ECIES) with named, user-defined and Brainpool curves, KCDSA, and more
  • Symmetric: AES, AES-GCM, Triple DES, DES, ARIA, SEED, RCS, RC4, RC5, CAST, and more
  • Hash / Message Digest / HMAC: SHA-1, SHA-2, SHA-3, SM2, SM3, SM4, and more
  • Key Derivation: SP800-108 Counter Mode
  • Key Wrapping: SP800-38F
  • Random Number Generation: NIST SP 800-90 A/B/C certified, AIS 20/31 compliant to DRG.4
  • Digital Wallet Encryption: BIP32

 

Operating Systems & API

  • Supported OS: Windows, Linux
  • API: PKCS#11, Java (JCA/JCE), Microsoft CAPI and CNG, OpenSSL

 

Security Features

  • Multiple roles for strong separation of duties
  • Multi-person MofN with multi-factor authentication
  • Secure audit logging
  • High-assurance delivery with secure transport mode
  • Functionality Modules – extend native HSM functionality and deploy custom code within the secure confines of the HSM
  • Compliance with GDPR, eIDAS, HIPAA, PCI-DSS, and more

 

Certifications (additional)

  • FIPS 140-2 Level 3 and FIPS 140-3 Level 3 (Password and Multi-Factor / PED)
  • Common Criteria EAL4+ (AVA_VAN.5 and ALC_FLR.2) against Protection Profile EN 419221-5
  • Singapore NITES Common Criteria Scheme
  • Brazil INMETRO Approved (formerly ITI)
  • NATO Approved for Use up to Restricted

 

Physical Characteristics

  • Low profile PCIe card
  • Dimensions: 69.6 mm × 167 mm × 18.7 mm (2.74" × 6.57" × 0.74")
  • Power consumption: 18 W maximum, 14 W typical
  • Heat dissipation: 61.4 BTU/hr maximum, 47.8 BTU/hr typical
  • Temperature: operating 0 °C – 50 °C, storage −20 °C – 60 °C
  • Relative humidity: 5% to 95% (38 °C), non-condensing

 

Host Interface & Standards

  • PCI-Express CEM 3.0, PCI, PCI Express Base 2.0
  • UL, CSA, CE, FCC, VCCI, C-TICK, KC MARK
  • RoHS2, WEEE, India BIS [IS 13252 (Part 1)/IEC 60950-1]

 

Reliability

  • Backup/restore
  • High Availability (HA)
  • Mean Time Between Failure (MTBF): 997,508 hours

 

Positioning within the Luna PCIe HSM Range

  • A790 – Maximum Performance, Luna A Series (Password Authentication), up to 64 MB memory
  • Lower models: A700 (Standard) and A750 (Enterprise Performance)
  • Luna S Series (S700/S750/S790) with multi-factor (PED) authentication for high-assurance use cases

 

 

Thales (formerly Gemalto)

Thales is a French technology group operating in aerospace, defence and security, space, cybersecurity, and digital identity. It employs more than 80,000 people across nearly 70 countries, and its solutions are relied upon by governments, banks, telecom operators, and industrial enterprises worldwide.

In the field of digital security, Thales builds on the heritage of SafeNet and Gemalto, both of which were world leaders in data protection, cryptographic key management, and the issuance of digital identities. Gemalto became part of the Thales Group in 2019, and its portfolio now sits within the Thales Cyber & Digital Identity division. As a result, Thales products combine proven technologies — deployed at certification authorities, government institutions, and financial organizations for decades — with long-term support and a global footprint.

Thales security solutions are designed to meet the most demanding international standards and certifications (such as FIPS 140-2/140-3 and Common Criteria), and form a root of trust for public key infrastructure (PKI), qualified trust services under eIDAS, data protection, payment systems, and digital identities.

By choosing a Thales product, you gain technology from a trusted global provider of digital security, backed by long-term support, regular certifications, and worldwide infrastructure.