December 17, 2019
SafeNet AT is pleased to announce the release of Luna Credential System (LCS). This first-of-its-kind, patent-pending solution introduces a new approach to multi-factor authentication by maintaining user credentials in a centralized hardware device that is securely accessible by endpoints in a distributed network. It unites the familiarity of certificate-based authentication with the security of a FIPS 140-2 certified hardware security module (HSM).
LCS Addresses PKI Authentication Challenges
Certificate-based, multi-factor authentication is a mainstay security technique used by the U.S. Federal Government to ensure the identities of entities within a Public Key Infrastructure (PKI). For people, secure storage and distribution of user credentials is easily facilitated by utilizing a smart card or USB token. But, what about non-person entities (NPEs) like a device, software robot or some other automation technology? NPEs must have hardware-secured credentials to meet security mandates. Or what if the entity is indeed a person, but token use is not desirable or not an option?
HSM-Secured Identity Credentials
LCS is a multi-purpose, secure credential system ideally suited for an environment in which the endpoints cannot use a traditional small form-factor token. Composed of the Luna Credential HSM and the Luna Credential Client, LCS supports a number of use cases including Windows Logon and authentication to PK-enabled applications and websites.
Luna Credential System Use Cases
Robotic Process Automation (RPA)
- Manages the digital identities of RPA bots throughout their lifecycle
- Replaces traditional multi-factor auth with an ultra-secure HSM-based authentication system eliminating the need for a smart card
- Maintains PKI credentials and certificates in a secure, centralized location.
- Cryptographic operations take place within a high assurance HSM instead of on a smart card
- Integrates with UiPath and Blue Prism RPA Solutions
Credential Data Protection
- Stores identity credentials within the confines of a centralized HSM thus mitigating the risk of accidental loss or intentional compromise of a physical token
Mobile Workforce with Use of Multiple Devices
- Provides the best of both solutions by offering secure, hardware-based multi-factor PKI authentication with software-like flexibility, scalability, and ease of use
- Ideally suited for virtualized environments in which virtual machines can’t use a smartcard but require hardware secured credentials.