Venafi and Gemalto Partner to Expand Machine Identity Protection

New partnership and integration allows customers to protect the growing number of connected machines

SALT LAKE CITY--()--Venafi®, the leading provider of machine identity protection, and Gemalto (Euronext NL0000400653 GTO), the world leader in digital security, today announced a new technology partnership and integration that allows organizations to automate encryption key life cycles and certificate issuance to better protect machine identities. With Venafi and Gemalto’s integration, organizations reduce the risk of data breaches, meet compliance requirements and simplify machine identity protection.

Scaling the use of HTTPS demands trade-offs between security and efficiency. For example, enabling Encryption Everywhere strategies requires organization to deploy more Secure Sockets Layer/Transport Layer Security (SSL/TLS) keys and certificates. The integrated solution of the Venafi Trust Protection Platform and Gemalto’s SafeNet Luna Hardware Security Modules strengthens machine identity protection programs by eliminating time-consuming and error-prone manual tasks, which increase the risk of exposing private keys and threaten application availability.

“Enterprises face new and complex threats that grow in intensity each day,” said Todd Moore, senior vice president of encryption products at Gemalto. “Our partnership with Venafi allows organizations to scale their use of hardware security modules (HSMs) to reduce risk and improve compliance and threat protection, ensuring that encryption keys and certificates always remain highly protected in hardware. This integration demonstrates Gemalto’s long-standing commitment to delivering the world’s leading HSM technology and optimum protection to our customers. This is especially important with the expansion of connected devices.”

Key benefits of Venafi and Gemalto’s integration include:

  • Reduced risk and strengthened security: Security and operations teams can expand the use of encryption with keys and certificates generated and stored in a FIPS 140-2 Level 3 certified HSM at the application level. This dramatically reduces the risk of compromise and improves overall security.
  • Centralize control, visibility and validation: Security and risk management teams now have one central location for setting, enforcing and validating policy for HSM security. As a result, they can better meet compliance requirements and simplify audits.
  • Reduce complexity and simplify security operations: Key pairs are securely generated in the HSM where they can be accessed by applications, and the private keys never leave the hardened, tamper-resistant HSM appliance. All operations are automated; administrators are not required to perform manual tasks on physical or virtual servers.
  • Reduce costs and meet service-level agreements: Security operations teams no longer need to spend time performing key and certificate operations for applications. By saving businesses time, they keep resources and budgets in check.

“Organizations can use this solution to automate the management and replacement of keys protected by SafeNet Luna HSMs in Microsoft IIS, Apache and Java application servers,” said Kevin Bocek, chief security strategist for Venafi. “Our integration with Gemalto works immediately with all leading certificate authorities in the Venafi Technology Network, ensuring improved machine identity protection. It is easy to deploy, reduces errors and dramatically cuts the time and resources required to use SSL and TLS keys and certificates with HSMs.”

Additional resources:

Venafi Technology Network

Venafi Trust Protection Platform

SafeNet Luna Hardware Security Module

Gemalto Cipher Partner Page

About Venafi

Venafi is the cybersecurity market leader in machine identity protection, securing all connections and communications between machines. Venafi protects machine identity types by orchestrating cryptographic keys and digital certificates for SSL/TLS, IoT, mobile and SSH. Venafi provides global visibility of machine identities and the risks associated with them for the extended enterprise —on premises, mobile, virtual, cloud and IoT — at machine speed and scale. Venafi puts this intelligence into action with automated remediation that reduces the security and availability risks connected with weak or compromised machine identities while safeguarding the flow of information to trusted machines and preventing communication with machines that are not trusted.

With over 30 patents, Venafi delivers innovative solutions for the world's most demanding, security-conscious Global 5000 organizations, including the top five U.S. health insurers; the top five U.S. airlines; four of the top five U.S., U.K. and South African banks; and four of the top five U.S. retailers. For more information, visit:

About Gemalto

Gemalto (Euronext NL0000400653 GTO) is the global leader in digital security, with 2017 annual revenues of €3 billion and customers in over 180 countries. We bring trust to an increasingly connected world.

From secure software to biometrics and encryption, our technologies and services enable businesses and governments to authenticate identities and protect data so they stay safe and enable services in personal devices, connected objects, the cloud and in between.

Gemalto’s solutions are at the heart of modern life, from payment to enterprise security and the internet of things. We authenticate people, transactions and objects, encrypt data and create value for software – enabling our clients to deliver secure digital services for billions of individuals and things.

Our 15,000 employees operate out of 114 offices, 40 personalization and data centers, and 35 research and software development centers located in 47 countries.

For more information visit, or follow @gemalto on Twitter.


Shelley Boose, 408-398-6987

Release Summary

New partnership and integration allows customers to protect the growing number of connected machines


Shelley Boose, 408-398-6987