Key Points

Conforms to RFC 5280
Provides ability to configure multiple certificate profiles
Supports the ETSI Qualified Certificate extension
Provides simplified server-side key generation and client-side key generation (using Go>Sign Applet), avoiding the need for business applications to support multiple different ways that popular browsers use for key generation and certification
Supports X.509 CRL issuance and LDAP/HTTP publication according to defined schedule or automatically on every certificate status change; most popular CRL extensions are supported
Security management is CWA 14167-1 certified allowing Qualified CA services to be offered
Supports Hardware Security Module (HSM) based CA private key storage and processing, use of secure smart cards/tokens is also possible
Provides RSA certificate signing with keys of 1024, 2048, 4096 bits
Provides ECDSA certificate signing with keys of 192, 224, 256, 384, 521 bits
Supports multiple hash algorithms including SHA-1, SHA-2 (SHA-256, SHA-384 and SHA-512)
Provides time drift monitoring, alerting and service stop features
Supports detailed certificate management request/response logging, transaction viewers and auto log archiving
High availability, resilience and high throughput capability
Uses strong operator authentication and access control
Summary and detailed management reporting
Can be used together with ADSS OCSP Server to offer real-time certificate validation service and TSA Server for secure RFC 3161 timestamping service. Thereby providing a complete PKI solution, with all of the CA, OCSP and TSA service modules CWA 14167-1 certified
Ascertia is a global leader in delivering functionally rich, easy to deploy e-security solutions. We pride ourselves in being easy and efficient to deal with.
Ascertia is a global leader in delivering functionally rich, easy to deploy e-security solutions. We pride ourselves in being easy and efficient to deal with.