U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1957


Module Name
Luna® G5 Cryptographic Module
FIPS 140-2
 Historical Reason
Moved to historical list in accordance with SP800-131A Revision 1 Transition (AES/TDES key wrapping)
Validation Dates
Overall Level
When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
Module Type
Multi-chip standalone
Luna® G5 delivers key management in a portable appliance. All key materials are maintained exclusively within the confines of the hardware. The small form-factor and on-board key storage sets the product apart, making it especially attractive to customers who need to physically remove and store the small appliance holding PKI root keys. The appliance directly connects the HSM to the application server via a USB interface.
FIPS Algorithms
AES Certs. #2262 and #2263
DRBG Cert. #277
DSA Certs. #704 and 705
ECDSA Certs. #364 and #365
HMAC Certs. #1386 and #1387
KAS Cert. #37
KBKDF Cert. #5
RSA Certs. #1159 and #1160
SHS Certs. #1947 and #1948
Triple-DES Certs. #1414 and #1415
Triple-DES MAC Triple-DES Certs. #1414 and #1415, vendor affirmed
Other Algorithms
DES; RC2; RC4; RC5; CAST5; SEED; ARIA; MD2; MD5; HAS-160; DES-MAC; RC2-MAC; RC5-MAC; CAST5-MAC; SSL3-MD5-MAC; SSL3-SHA1-MAC; KCDSA; Diffie-Hellman (key agreement; key establishment methodology provides 112 or 128 bits of encryption strength); HRNG; AES MAC (AES Cert. #2263; non-compliant); AES (Certs. #2262 and #2263, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Triple-DES (Certs. #1414 and #1415, key wrapping; key establishment methodology provides 112 bits of encryption strength); Generic-Secret generation (non-compliant); SSL Pre-Master generation (non-compliant); RSA (non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 152 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
LTK-03, Version Code 0102; LTK-03, Version Code 0103
Firmware Versions
6.2.3 and 6.2.5


SafeNet, Inc.
20 Colonnade Road
Suite 200
Ottawa, Ontario K2E 7M6

Security and Certifications Team


NVLAP Code: 200556-0