Thales Partners

Palo Alto Networks

Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life.

Palo Alto Networks NGFW and Thales Luna HSM

Palo Alto Networks offers a full line of advanced web firewall-gateway appliances that range from the PA-200, designed for enterprise remote offices, to the PA-7050, which is a modular chassis designed for high-speed datacenters. 

Palo Alto Networks’ platform architecture is based on a single-pass software engine and uses function-specific processing for networking, security, threat prevention, and management to deliver predictable performance. SafeNet Enterprise hardware security module (HSM) integrates with Palo Alto Networks firewalls to provide the logical and physical protection of the keys used in SSL/TLS encryption. 

Thales Luna Network HSMs are the choice for enterprises requiring strong cryptographic security for paper-to-digital initiatives, digital signatures, DNSSEC, hardware key storage, transactional acceleration, certificate signing, code or document signing, bulk key generation, data encryption, and more.

Resources and Additional Information

Learn more about Thales Luna HSMs

Palo Alto Networks NGFW with Luna HSM Solution Brief

Palo Alto Networks (PAN)-OS Thales Luna HSM Integration Guide

Palo Alto Networks GlobalProtect and SafeNet Authentication Solutions for Secure Remote Access

Palo Alto Networks GlobalProtect™ network security for endpoints enables you to protect your mobile workforce by extending the Next-Generation Firewall (NGFW) to all users, regardless of location. It secures traffic by applying the NGFW’s capabilities to understand application use, associate the traffic with users and devices, and enforce security policies with next-generation technologies.

GlobalProtect safeguards your mobile workforce by inspecting all traffic using your Next-Generation Firewalls deployed as internet gateways, whether at the perimeter, in the Demilitarized Zone (DMZ), or in the cloud. Laptops, smartphones, and tablets with the GlobalProtect app automatically establish a secure IPsec/SSL VPN connection to the Next-Generation Firewall using the best gateway, thus providing full visibility of all network traffic, applications, ports, and protocols. By eliminating the blind spots in mobile workforce traffic, your organization can maintain a consistent view into applications.

Building on Thales’s award winning authentication service, SafeNet Trusted Access combines authentication and access management in a fully integrated cloud service. Our service lets you transform your business and operate securely in the cloud by preventing data breaches, simplifying access for users, and enabling compliance.

Our customers include over 25,000 organizations and 30 million users worldwide across all industries. Partnering with Thales for the long term, they trust our innovative access management and authentication services to help them securely adopt new ways of doing business on mobile, and in the cloud.

SafeNet Authentication Client (SAC) is a public key infrastructure (PKI) middleware that provides a secure method for exchanging information based on public key cryptography, enabling trusted third-party verification of user identities. It utilizes a system of digital certificates, certificate authorities, and other registration authorities that verify and authenticate the validity of each party involved in an Internet transaction

Resources & Additional Information

Using SAC CBA with Palo Alto GlobalProtect
Thales and Palo Alto Networks Solution Brief