ADSS CA Server
Flexible certificate authority / PKI server
ADSS Certificate Authority (CA) Server offers certificate lifecycle services using a flexible web services interface. Using this simple XML/SOAP web services interface, the key generation and certification services can be easily integrated within a business application or used with a ADSS Registration Authority (RA) Server or even with 3rd party RA systems such as specialist smartcard management systems.
ADSS CA Server is a certified PKI Server to meet the CWA 14167-1 requirements for trustworthy systems making it suitable for use by Qualified Certificate Service Providers (CSPs).
FEATURES & BENEFITS
Support for root and subordinate CAs
ADSS CA Server can be used to set-up a Root CA and one or more Subordinate CAs from the same instance. Alternatively, ADSS CA Server can be used as an offline Root CA or an existing Root CA can be utilised. ADSS Server can also receive local requests and securely route these to another high–trust central CA instance if required.
Business applications can act as RAs
Often business applications already have an established Know Your Customer (KYC) registration process. Such business applications can act as very effective Registration Authorities (RAs) and easily integrate with ADSS CA Server using configurable registration and certification processes.
Multiple certification profiles
ADSS CA Server uses certification profiles to define the algorithms, key-lengths, certificate lifetime and other important parameters. Automatic certificate and key renewal is supported. Multiple profiles are supported to meet a variety of business requirements.
Ascertia is a global leader in delivering functionally rich, easy to deploy e-security solutions. We pride ourselves in being easy and efficient to deal with.
Ascertia is a global leader in delivering functionally rich, easy to deploy e-security solutions. We pride ourselves in being easy and efficient to deal with.
Supports multiple, configurable certificate templates e.g. SSL server/Client, EV SSL, email signing/encryption, IPSec, DRM, Code Signing, code signing, TSA certificates etc.; all popular certificate extensions are supported
Allows creation of Root CAs or Subordinate Issuer CAs
Supports multiple logical PKIs consisting of CAs with their own certificate signing keys and other parameters from one ADSS Server instance
Key Points
Supports multiple, configurable certificate templates e.g. SSL server/Client, EV SSL, email signing/encryption, IPSec, DRM, Code Signing, code signing, TSA certificates etc.; all popular certificate extensions are supported
Allows creation of Root CAs or Subordinate Issuer CAs
Supports multiple logical PKIs consisting of CAs with their own certificate signing keys and other parameters from one ADSS Server instance
SOLUTION DEMOS
We have arranged self-service live demos for important use cases, give them a try!
- Server Side Certificate issuanceWe use ADSS CA Server as part of our online certification service. You can request a demo X.509 digital certificate from here (trial certificates are provided free of charge, long-term certificates are provided at low cost).
Launch Demo
- Certificate generation using MS CAPI/CNGThis (Windows only) demo allows you to create a private key and digital key inside your Windows Keystore with Go>Sign Desktop. The private key is generated using the Operating System specific APIs, so CAPI/CNG. Once the demo has run you can view/download the generated digital certificate on Windows as a PFX/PKCS#12 file from Internet Explorer > Tools > Internet Options > Content > Certificates > Personal
Ensure you have Go>Sign Desktop installed:
For Mac OS, download and install it from here Mac OS
For installation instructions see Installation Guide
USE CASE
ADSS CA Service
Send request for X509 Digital Certificate generation from your business applications. Keys can be held in HSM and later referenced to create digital signatures on PDF, XML etc:
Our experience with the ADSS Server product and its availability and performance, is what I as an IT Professional and as Nikken’s IT manager of 9 years, believes makes Ascertia the standards by which all companies in this industry sector should consider following.
Andy Butterworth
IT Manager Nikken UK Ltd