Gemalto is now part of the Thales Group, find out more.
Contact Us

SafeNet Payment HSM - Electronic Funds Transfer Security

Protect Your Electronic Funds Transfer (EFT)

EFT Security with SafeNet Payment HSM

SafeNet Payment HSM – formerly Luna EFT – provides PCI-HSM 2.0 and APCA CECS Certification for secure financial transactions.  As a PCI-Certified hardware security module (HSM), SafeNet Payment HSM adheres to the highest level of security in the industry.

The PCI HSM standard, first issued by the Payment Card Industry Security Standards Council (PCI SSC) in 2009, defines a set of requirements for HSMs to use in several areas throughout the payment process.

SafeNet Payment HSM adheres to all of the standards, which include:

  • Transaction Processing
  • 3-D Secure
  • Card Verification
  • Card Production and Personalization
  • EFTPOS, including DUKPT
  • ATM Interchange
  • Cash Card Reloading
  • Data Integrity
  • Chip Card Transaction Processing
  • Cloud Based Payments
In developing the Solve DataShield offering, it was vital that we effectively comply with all the relevant PCI P2PE standards, including robust key management policies. Gemalto SafeNet Payment HSMs delivered all the security capabilities that were required, while providing a platform that we could deploy quickly and manage efficiently.
- Nick Stacey
Dir. of Business & Market Operations
The Logic Group

Read the Case Study

SafeNet Payment HSM Offers:

SafeNet Payment HSM features an easy to use Graphic User Interface (GUI) that simplifies the process of configuring and managing cryptographic and key component settings. A well-structured menu-based navigation system, coupled with intuitive dialog box interaction, reduces the risk of manual input errors and speeds up the administrative process.
A single SafeNet Payment HSM can be separated into 20 cryptographically isolated partitions, with each partition functioning as if it was an independent HSM. This provides a tremendous amount of scalability and flexibility given that a single HSM can perform tasks for multiple payment applications at the same time.
SafeNet Payment HSM allows for custom functionality to be readily implemented in support of non-standard EFT systems including e-wallet, mobile banking, and gaming. SafeNet works closely with customers to extend its standard payment products to incorporate customer-defined functionality.
SafeNet Payment HSM provides command set support for a wide variety of clients. The Mark II command set provides the functionality required by the vast majority of issuing and acquiring banks, payment processors and ATM systems, including functionality for card issuance whilst the AMB command set supports Australian Major Bank (AMB) requirements.
Point to Point Encryption P2PE White Paper - Cover Image

Featured Resource: Point-to-Point Encryption White Paper

In establishing the security mechanisms required to comply with point-to-point encryption (P2PE), hardware security modules (HSMs) play a critical role. This paper presents service providers with detailed insights for finding an HSM that offers optimal support for their P2PE compliance and business objectives.

SafeNet Payment HSM Specifications:



OS Support

  • Windows, Linux, Solaris, AIX, HP-UX
  • Virtual: VMware, Hyper-V, Xen


  • Symmetric: AES, DES, Triple DES, SEED
  • Asymmetric: RSA (1024-7168)
  • Hash/Message Digest/HMAC: SHA-1, SHA-2 (SHA-224, SHA-256, SHA-384, SHA-512), MD5
  • Random Number Generation: FIPS 140-2 approved DRBG (SP 800-90 CTR mode)

Functionality and Support

  • EMV
  • Contactless & NFC Payment Support
  • 3D-Secure
  • APACS 70
  • Italian Debit
  • American Express
  • TR-31
  • Visa Cloud-Based Payments
  • MasterCard Cloud-Based Payments
  • Format Preserving Encryption

Rack Mountable

Standard 19" EIA rack mount chassis (1U height)


19” x 21” x 1.725” (482.6mm x 533.4mm x 43.815mm)


28lb (12.7kg)

Input Voltage

100-240V, 50-60Hz

Power Consumption

180W maximum, 155W typical


Operating 0°C – 35°C, Storage 20°C – 60°C

Relative Humidity

5% to 95% (38°C) non-condensing


  • PCI-HSM 2.0


  • UL, CSA, CE
  • FCC, KC Mark, VCCI, CE
  • RoHS, WEEE

Sample Applications

Orange Cryptograhic Key Icon
  • Card issuance
  • PCI P2PE compliance
  • EMV
  • Transaction processing
  • Remote key loading
  • Contactless payments

Strongest Security

  • Keys in hardware
  • Remote management with two-factor access control
  • Web-based configuration
  • Intrusion-resistant, tamper-evident hardware

Secure Audit Logging

  • User operations are automatically audited and contains who, what, and when to help meet regulatory compliance mandates
  • Increased security to provide tamper-evident logging

Performance and Scalability

  • Up to 2000 Visa PIN verification operations per second
  • Scalable up to 20 cryptographically isolated partitions
  • Available in a variety of performance options to suit individual use case needs
  • In-field upgradeability between performance levels to protect investment
  • Dual hot-plug redundant power supply
Back to Top

Contact Us

Thank you for your interest in our products. Please fill out and submit the form to receive more information about Gemalto or to be contacted by a Gemalto specialist.

Your Information

* Email Address:  
* First Name:  
* Last Name:  
* Company Name:  
* Phone:  
* Country:  
* State (US Only):  
* Province (Canada/Australia Only):  

By submitting this form I agree to receive information from Gemalto and its affiliates as described in our Privacy statement.