Tokens & HSM

Thales / SafeNet

SafeNet Tokens and Smartcards

Hardware security devices for storing digital certificates and cryptographic keys. Ideal for two-factor authentication, digital signing, and protecting access to critical systems.

What are SafeNet tokens and smartcards? Qué son los tokens y smartcards SafeNet

SafeNet tokens and smartcards, from Thales, are hardware security devices that store cryptographic keys and digital certificates inside a tamper-resistant chip. Unlike software-based solutions, the private key never leaves the device, which guarantees a level of security that is impossible to achieve with software alone.

CertiSur distributes and implements SafeNet devices integrated with its digital certificate issuance infrastructure, providing organizations with a complete and certified hardware security solution.

Available products Productos disponibles

  • SafeNet eToken 5110 — USB token with FIPS 140-2 Level 3 certification. Supports RSA 2048/4096 and ECC. Compatible with Windows, macOS, and Linux. SafeNet eToken 5110 — Token USB con certificación FIPS 140-2 Level 3. Soporta RSA 2048/4096 y ECC. Compatible con Windows, macOS y Linux.
  • SafeNet IDPrime — Smart card for PKI-based authentication. Compatible with standard card readers and enterprise identity management platforms. SafeNet IDPrime — Smartcard para autenticación basada en PKI. Compatible con lectores de tarjeta estándar y plataformas de gestión de identidad empresarial.
  • SafeNet AT-Series — USB tokens optimized for certificate-based authentication in corporate environments, with centralized management support. SafeNet AT-Series — Tokens USB optimizados para autenticación basada en certificados en entornos corporativos, con soporte de gestión centralizada.
  • SafeNet OTP — One-Time Password tokens for multi-factor authentication without requiring a PKI infrastructure. SafeNet OTP — Tokens de contraseña de un solo uso (OTP) para autenticación multifactor sin necesidad de infraestructura PKI.

Main use cases Casos de uso principales

  • Storage of personal or organizational digital certificates for legally valid digital signing.
  • Two-factor authentication (2FA) for access to corporate networks, VPNs, and critical systems.
  • Protection of code signing certificates, preventing private key theft.
  • Secure access to web portals requiring certificate-based authentication.
  • Compliance with regulatory requirements that mandate hardware storage of cryptographic keys (BCRA, CNV, etc.).

Key benefits Beneficios clave

  • Private key never leaves the device — maximum security against theft or extraction.
  • FIPS 140-2 Level 3 certification — meets the most demanding regulatory requirements.
  • Multi-platform compatibility: Windows, macOS, Linux.
  • Compatible with PKCS#11, Microsoft CryptoAPI, and PC/SC standards.
  • CertiSur support for implementation and integration with existing systems.
  • Centralized management via SafeNet Authentication Manager (SAM) for large fleets.