John Ray | Director, HSM Product Management
More About This Author >
John Ray | Director, HSM Product Management
More About This Author >
Thales Luna Network Hardware Security Module (HSM) 7 has been certified for NATO Secret classification. This milestone matters: it signals readiness, resilience, and a security posture built for environments where compromise is never an option.
NATO Secret classifications are not handed out lightly. With this classification, defense, government, enterprises operating in highly regulated environments, as well as other high-security teams can confidently place Luna HSMs at the center of their most critical systems. Luna Network HSM 7 performs cryptographic operations, protects the entire key lifecycle, and provides a hardware root of trust that underpins the infrastructure on which their daily operations depend.
Understanding the NATO Secret Classification
According to NATO, NATO Secret is any information whose "unauthorized disclosure could cause serious damage to NATO operations." It is the second-highest classification behind COSMIC Top Secret.
For cryptographic equipment to achieve NATO Secret classification, it must meet rigorous standards to confirm it can keep secure key material, resist tampering, and ensure a trustworthy operating environment. Only devices that meet these stringent standards are permitted to handle secret-level information across NATO networks.
But the importance of this level of assurance extends far beyond mission-critical defense programs. Today’s enterprises (whether operating in finance, energy, healthcare, telecommunications, or global cloud environments) face escalating risks, increasingly sophisticated adversaries, and a growing dependence on cryptographic integrity.
Secure communication and trustworthy cryptographic operations are no longer concerns reserved for defense CISOs; they are priorities for every organization that must protect high-value data, preserve operational continuity, and maintain customer and regulatory trust. Breaches at this level are not minor setbacks. They can disrupt services, damage brand trust and integrity, expose sensitive data, and create cascading impacts across entire industries.
This is why every component in the cryptographic chain must withstand the closest scrutiny. Every key must have a safe home, and every device must operate with proven assurance—whether securing mission operations or safeguarding the data that powers modern enterprise.
Security Built for the Future, Proven Today
The Luna HSM portfolio has always been engineered with emerging threats in mind. It protects cryptographic keys inside tamper-evident, FIPS-validated hardware, so the keys never leave the secure HSM environment. That distinction matters. Most vendors discuss robust security, but few can claim validation at a secret level from NATO.
This recognition builds on continued major progress, and industry certifications. The Luna Network HSM 7 was also one of the first HSMs in the industry to be FIPS 140-3 Level 3 validated.
This is more than a small update from the long-standing FIPS 140-2. Technology has moved on, threats have evolved, and cryptographic modules must keep up. FIPS 140-3 achieves this by aligning with global standards, strengthening lifecycle protections, sharpening authentication, and defending against new physical and side-channel attacks. It sets a new benchmark for what secure hardware must deliver, today and in the quantum future.
Beyond FIPS, Luna HSMs also hold proven Common Criteria certification, trusted worldwide for evaluating the security of IT products in high-assurance settings. It is another layer of independent scrutiny that reinforces the message: these devices are engineered to protect cryptographic keys and are examined, tested, and validated by the authorities who govern the environments where failure is unacceptable.
A Highly Certified Digital Foundation for What Comes Next
Achieving NATO Secret classification is the direct outcome of years of advanced engineering and uncompromising security design. It also supports the transition to next-generation security, including the adoption of NIST-standardized post-quantum cryptography (PQC) algorithms.
For CISOs operating in high-assurance environments, this approval provides a clear and validated path forward. It helps meet today’s security and compliance requirements while building readiness for the cryptographic standards of tomorrow. It also means organizations can rely on hardware that has been independently validated to protect critical keys, simplify compliance, and support strong security across diverse regulatory environments.
This milestone aligns with our ongoing investment in PQC readiness, enabling a crypto-agile path that meets current NATO requirements and prepares for emerging threats. Most importantly, it delivers assurance backed by measurable standards and independent authorities. As threats evolve and expectations rise, trusted validation matters.
If you would like to explore what this means for your environment, download the Luna HSM product brief or speak with a Thales specialist who can walk you through your specific security needs.