- Seen : 741 View
Public key infrastructure is used to provide security and trust in the production and exchange of electronic information. One of the main elements of this infrastructure is the Relying Party. According to the requirements and policies of the Certification Center, the institution validates the digital signature and electronic certificate of the signatory and, after confirming the identity and validity of the signature, provides the relevant services to them.
The process of equipping and activating PKI capabilities in trusted software systems is called PKE or Public Key Enabling, and the set of software tools and software packages used in this regard is called PKE SDK. With the tools and modules of programming ready and approved by PKI laboratories in the country, these tools facilitate the product development process for software developers and software producers and improve the quality and reduce the cost and preparation time of the system.
Approvals and honors
Get a platinum rank from the PKE Laboratory of the Root Center of the Ministry of Industry, Mines and Trade
Used in software systems of public and private organizations, including Central Parsein Certification Center, Central Bank of the Islamic Republic of Iran, Hamrah Aval Company, Stock Exchange and Securities Organization, Iran Electricity Network Management Company, Social Security Organization, Communication Industries Ava Kish, Network Security and Banking Emergency Control Center (Kashif) and Bank D.
applications
Adding digital signature capability and PKI-based two-factor authentication to a variety of software systems such as financial and office automation, ERP, BPMS and HRM
Adding features of encryption systems (comprehensiveness, confidentiality, authentication and non-denial) to software systems
Features and standards
Can be used in a variety of web-based software systems, desktops and remote services
Can be used in common web browsers for Windows, Linux and Android
Possibility to use in software servers based on PHP, Microsoft .NET Framework, Java and other environments via Wrapper on Native C / C ++ Library
Can be used in common web browsers such as IIS, Oracle WebLogic and Apache
Can be used on Windows, Linux and Android operating systems
Certification and validation of the user's electronic certificate in accordance with RFC 5280, NIST Recommendation for X.509 Path Validation and in accordance with the document "Requirements for the formation and validation of the certificate chain of the State Center for Root Electronic Certification"
Supports LDAP and HTTP protocol to connect to the repository and receive a chain of certificates and revocation lists
Ability to specify the time interval for receiving and updating CRL compatible with RFC5280
Time Seal Receipt Support (TSP) Compliant with RFC3161 standard
Support for RFC5019 OCSP Certified Status Online Questionnaire Mechanisms
Ability to receive certificate information based on a distinctive name (DN) compatible with RFC2396
Supports a variety of encryption devices such as digital signature tokens, smart cards and HSMs through MS CAPI, Java JCA / JCE CSP and PKCS # 11 on the server and user side.
Support for Parsaki digital signature tokens with PKCS # 11 interface as Built-in
Ability to use several different encryption devices simultaneously
Ability to extract and review Certificate Extensions in accordance with RFC5280
Ability to generate random numbers according to ANSI X9.31 Appendix A.2.4 and ANSI X9.62-2005 Annex D to produce random string Challenge in the discussion of authentication according to FIPS 196
Possibility of producing and reviewing CSR certification application in accordance with PKCS # 10 standard
Ability to generate and validate digital signatures in PKCS # 7 and CMS formats
Supports RSA and ECDSA algorithms in signature and validation
Support for SHA-1, SHA-256, SHA-384 and SHA-512 algorithms
Supports RSASSA-PSS and RSASSA-PKCS1-v1.5 digital signature mechanisms
Ability to hold events according to the document "Requirements for the formation and validation of the certificate chain of the State Center for the issuance of electronic certificate of root
Ability to provide PKI, FIDO and PIV applets for smart cards and SIM cards
Saler Company Information
