Centralized encryption key management is essential for safeguarding the keys involved in SSL encryption and decryption. It consolidates and protects master keys and secures keys from various third-party encryption solutions. Together, the next-generation firewalls and encryption management solutions empower organizations to strengthen their security posture by centralizing and simplifying key management and data security policies.
Secure and Manage SSL/TLS Keys: Palo Alto Networks Next-Generation Firewalls with Thales CipherTrust Manager - Solution Brief |
Palo Alto Networks offers a full line of advanced web firewall-gateway appliances that range from the PA-200, designed for enterprise remote offices, to the PA-7050, which is a modular chassis designed for high-speed datacenters.
Palo Alto Networks’ platform architecture is based on a single-pass software engine and uses function-specific processing for networking, security, threat prevention, and management to deliver predictable performance. SafeNet Enterprise hardware security module (HSM) integrates with Palo Alto Networks firewalls to provide the logical and physical protection of the keys used in SSL/TLS encryption.
Thales Luna Network HSMs are the choice for enterprises requiring strong cryptographic security for paper-to-digital initiatives, digital signatures, DNSSEC, hardware key storage, transactional acceleration, certificate signing, code or document signing, bulk key generation, data encryption, and more.
Palo Alto Networks NGFW with Luna HSM Solution Brief | |
Palo Alto Networks (PAN)-OS Thales Luna HSM - Integration Guide |
Thales and Palo Alto Networks' long-standing collaboration helps support the widespread cloud migration, allowing organizations to implement Zero Trust security systems at scale. Through three technology integrations, businesses gain access to internal resources within a robust, highly resilient security architecture.
By integrating Thales’ SafeNet Trusted Access across Palo Alto Networks Prisma Access, GlobalProtect, ML-Powered Next Generation Firewalls, and Cortex XSOAR technologies, businesses are able to deploy a Zero Trust model across a suite of solutions. Organizations benefit from secure and adaptive multi-factor authentication, access management across edge solutions, network security policies, incident response and threat intelligence management.
The integrations minimize the threat of data breaches from identity compromise by implementing strong, adaptive authentication at the network edge and by ensuring automated remediation workflows in the event of an untrusted access event.
Thales’ SafeNet Trusted Access (STA) performs access management while Palo Alto Networks Cortex XSOAR enables customers to automate their access management response to security alerts in real-time.
Users can access cloud apps and onsite resources with a Zero Trust approach when using Thales’ SafeNet Trusted Access (STA) integrated with Palo Alto Networks Prisma Access. STA enforces authentication at the access point while Prisma Access provides network connectivity and security.
Thales’ SafeNet Trusted Access (STA) enforces a broad range of authentication methods at the access point while the Palo Alto Networks NGFW inspects traffic, enforces network security policies, and delivers threat prevention, enabling organizations to achieve Zero Trust network security.
Solution Briefs:
Integration Summaries (paloaltonetworks.com):