Fireblocks and Thales Double Down on Institutional Crypto Security With HSM‑Native Architecture

Fireblocks expands its partnership with Thales to deliver HSM‑native digital asset security that meets bank‑grade governance, control, and compliance demands.

For banks and financial institutions flirting with digital assets, security isn’t just a technical hurdle—it’s the gating factor. Fireblocks, the enterprise platform securing more than $5 trillion in digital‑asset transfers annually, is addressing that reality head‑on by expanding its collaboration with Thales, the cybersecurity heavyweight behind Luna Hardware Security Modules (HSMs).

The result is a tightly integrated, institutional‑grade security architecture designed to let banks and financial institutions operate crypto, tokenized assets, and on‑chain settlement workflows without re‑architecting their entire security or compliance model.

Extending Trusted Hardware Into Digital Assets

At the heart of the expanded collaboration is a simple but powerful idea: financial institutions shouldn’t have to abandon the hardware security infrastructure they already trust in order to support digital assets.

By integrating Fireblocks’ digital‑asset platform with Thales’ Luna HSMs, institutions can extend their existing, certified HSM environments directly into crypto and tokenized‑asset operations. There’s no need to re‑architect security workflows, weaken controls, or introduce unfamiliar trust assumptions—an issue that has stalled many bank‑led crypto initiatives.

This matters because Luna HSMs are already deeply embedded in traditional financial infrastructure, protecting cryptographic keys for payments, identity, and sensitive data across global banks. Bringing digital assets into that same hardware trust boundary lowers both technical and regulatory friction.

Built for Real Institutional Use Cases

The joint architecture supports a broad range of institutional digital‑asset activities, including custody, trading, tokenization, and on‑chain settlement. It covers cryptocurrencies, stablecoins, security tokens, and tokenized real‑world assets across major blockchain networks. Support for multiple elliptic curves is particularly notable. It enables broader cross‑chain coverage and access to deeper liquidity pools—an increasingly important requirement as institutions move beyond single‑chain strategies and experiment with multi‑network settlement and asset issuance.

Unlike consumer‑grade or crypto‑native solutions, this architecture is designed to integrate cleanly with existing enterprise security, governance, and audit frameworks. For regulated institutions, that alignment is often more important than raw technical innovation.

Control, Not Convenience, as the Design Principle

One of the most consistent regulatory concerns around digital‑asset platforms is accountability: who ultimately controls the keys, and who can move assets?

Fireblocks is explicitly positioning its approach as the opposite of custodial opacity. Banks and financial institutions retain full policy control and final transaction authority, meeting regulatory expectations for clear governance and traceable decision‑making.

The security model maps controls directly to compliance requirements using a combination of customer‑owned Luna HSMs, multi‑party computation (MPC), and cross‑domain integrations that regulators already understand. This is less about inventing new security paradigms and more about translating proven ones into a digital‑asset context.

Fireblocks KeyLink: Keys Never Leave the Institution

That philosophy is operationalized through Fireblocks KeyLink, a component that ensures private keys or key shares are generated, stored, and used entirely within customer‑owned Luna HSMs.

All cryptographic operations happen inside infrastructure controlled by the institution itself. Fireblocks cannot unilaterally sign transactions or move assets—a critical distinction for banks wary of vendor risk.

Instead, Fireblocks acts as an orchestration and policy‑enforcement layer, providing governance, workflow automation, and operational oversight across hot, warm, and cold storage models. The platform enables institutions to define who can do what, under which conditions, and with what approvals—without ever relinquishing custody of cryptographic authority.

Why This Matters Now

The timing of the announcement is significant. Banks globally are moving from proofs‑of‑concept to production deployments in digital assets, spurred by clearer regulatory frameworks and growing client demand for tokenization, stablecoins, and on‑chain settlement.

At the same time, regulators are scrutinizing digital‑asset infrastructure with the same expectations applied to traditional financial systems: resilience, auditability, segregation of duties, and operational continuity.

Fireblocks says its platform is already used by more than 95 banks in live environments, suggesting the market is past the experimentation phase. What institutions need now are architectures that can scale without introducing new categories of risk.

Thales: Hardware Trust as the Foundation

Todd Moore, Vice President of Data Security Products at Thales, framed the collaboration around trust. In his view, digital‑asset adoption hinges on protecting the cryptographic keys that underpin ownership and transaction authority.

By combining Luna HSMs with Fireblocks’ orchestration layer, institutions can reduce key‑exposure risk while strengthening governance. The emphasis is not just on security in theory, but on confidence at scale—moving high‑value digital assets across global networks without compromising control.

That hardware‑centric approach stands in contrast to purely software‑based custody models, which may be faster to deploy but often struggle to satisfy bank risk committees and regulators.

A Signal to the Market

For Fireblocks, the expanded partnership reinforces its positioning as an institutional infrastructure provider rather than a crypto‑native convenience platform. For Thales, it extends the relevance of its HSM technology into one of the fastest‑growing areas of financial services.

More broadly, the announcement signals where the digital‑asset industry is heading. As tokenization and on‑chain finance mature, the winners are likely to be platforms that align with existing financial risk models rather than trying to bypass them.

The era of “trust us, it’s secure” is fading. In its place is an insistence on verifiable controls, customer‑owned infrastructure, and architectures regulators can actually assess.

The Bigger Picture: Digital Assets Go Core Banking

The collaboration underscores a broader shift: digital assets are no longer treated as an experimental side business—they are becoming core financial infrastructure, subject to the same expectations as payments, securities settlement, and custody.

By anchoring digital‑asset operations in certified hardware and established governance frameworks, Fireblocks and Thales are effectively saying that the future of on‑chain finance looks a lot more like traditional finance—just faster, more programmable, and more global.

For banks still on the sidelines, this kind of architecture may be the missing piece. Not because it promises revolutionary returns, but because it makes digital assets boring enough for banks to finally adopt them at scale.

Get in touch with our fintech expert