epass PKI USB Token A stable and secure PKI product OVERVIEW

Similar documents
FEITIAN PKI Authentication Token. epass2003 with FIPS Cer tification

CRESCENDO SERIES Smart Cards. Smart Card Solutions

Converged Smart Card for Identity Assurance Solutions. Crescendo Series Smart Cards

Introducing etoken. What is etoken?

TrustKey Tool User Manual

Entrust Smartcard & USB Authentication

PROXKey Tool User Manual

epass2003 User Guide V1.0 Feitian Technologies Co., Ltd. Website:

CardOS API V3.2. Standard cryptographic interface for using applications with CardOS smart cards

Managed Portable Security Devices

Microsoft Identity Lifecycle Manager & Gemalto.NET Solutions. Jan 23 rd, 2007

Application Note Gemalto.NET 2.0 Smart Card Certificate Enrollment using Microsoft Certificate Services on Windows 2008

Secure Data Exchange Solution

1. Product Overview 2. Product Features 3. Comparison Chart 4. Product Applications 5. Order Information 6. Q & A

Citrix MetaFrame XP Security Standards and Deployment Scenarios

Secure USB Flash Drive. Biometric & Professional Drives

CryptoMate64. USB Cryptographic Token. Technical Specifications V1.03. Subject to change without prior notice.

Enhancing Web Application Security

eid Security Frank Cornelis Architect eid fedict All rights reserved

SafeNet Authentication Client (Mac)

GoldKey Product Info. Do not leave your Information Assets at risk Read On... Detailed Product Catalogue for GoldKey

PrivateServer HSM Integration with Microsoft IIS

RSA Digital Certificate Solution

DIGIPASS CertiID. Getting Started 3.1.0

Entrust Managed Services PKI. Getting started with digital certificates and Entrust Managed Services PKI. Document issue: 1.0

VeriSign PKI Client Government Edition v 1.5. VeriSign PKI Client Government. VeriSign PKI Client VeriSign, Inc. Government.

Token User Guide. Version 1.0/ July 2013

EXPLORING SMARTCARDS: AN INDEPENDENT LOOK TO TECHNOLOGIES AND MARKET

Crescendo offers the lowest total cost of ownership (TCO) for a combined logical and physical access control solution.

Entrust Managed Services PKI. Getting an end-user Entrust certificate using Entrust Authority Administration Services. Document issue: 2.

Enhancing Organizational Security Through the Use of Virtual Smart Cards

Smart Card- An Alternative to Password Authentication By Ahmad Ismadi Yazid B. Sukaimi

Key & Data Storage on Mobile Devices

Certicom Security for Government Suppliers developing client-side products to meet the US Government FIPS security requirement

DoD CAC Middleware Requirements Release 4.0

Using PIV Smart Cards on Linux for Authentication to Windows Active Directory

IDGo 800 Minidriver for Windows. User Guide

MyKey is the digital signature software governed by Malaysia s Digital Signature Act 1997 & is accepted by the courts of law in Malaysia.

FIPS Non- Proprietary Security Policy. McAfee SIEM Cryptographic Module, Version 1.0

SecureD Technical Overview

MetaFrame Presentation Server Security Standards and Deployment Scenarios Including Common Criteria Information

PUBLIC Secure Login for SAP Single Sign-On Implementation Guide

Functional diagram: Secure encrypted data. totally encrypted. XOR encryption. RFID token. fingerprint reader. 128 bit AES in ECB mode Security HDD

Multifactor authentication systems Jiří Sobotka, Radek Doležel

Deriving a Trusted Mobile Identity from an Existing Credential

Presentation Rundown. Introduction Product Overview Product Features Product Value Product Applications Question and Answer

Technical notes for HIGHSEC eid App Middleware

GoldKey Software. User s Manual. Revision WideBand Corporation Copyright WideBand Corporation. All Rights Reserved.

Draft Middleware Specification. Version X.X MM/DD/YYYY

Secure Network Communications FIPS Non Proprietary Security Policy

Innovative Secure Boot System (SBS) with a smartcard.

Using Entrust certificates with VPN

Using etoken for Securing s Using Outlook and Outlook Express

Embedded Java & Secure Element for high security in IoT systems

Secure Web Access Solution

Two-factor authentication Free portable encryption for USB drive Hardware disk encryption Face recognition logon

E-CERT C ONTROL M ANAGER

ACR880 GPRS Portable Smart Card Terminal

Guide to Obtaining Your Free WISeKey CertifyID Personal Digital Certificate (Personal eid) WISeKey 2010 / Alinghi 2010 Smartcards

Achieving Universal Secure Identity Verification with Convenience and Personal Privacy A PRIVARIS BUSINESS WHITE PAPER

IBM Client Security Solutions. Client Security User's Guide

Smart Card Deployment in the Data Center: Best Practices for Integrating Smart Card Authentication in a Secure KVM Environment

Complying with PCI Data Security

Integration Guide. SafeNet Authentication Client. Using SAC CBA for Check Point Security Gateway

A new Secure Remote Access Platform from Giritech. Page 1

Guidelines for Developing Cryptographic Service Providers (CSPs) for Acrobat on Windows

SecureDoc Disk Encryption Cryptographic Engine

Card Management System Integration Made Easy: Tools for Enrollment and Management of Certificates. September 2006

2 factor + 2. Authentication. way

Innovations in Digital Signature. Rethinking Digital Signatures

Gemalto SafeNet Minidriver 9.0

Citrix Presentation Server Security Standards and Deployment Scenarios Including Common Criteria Information. Citrix Presentation Server 4.

WHITE PAPER ENTRUST ENTELLIGENCE SECURITY PROVIDER 7.0 FOR WINDOWS PRODUCT OVERVIEW. Entrust All rights reserved.

Strong authentication of GUI sessions over Dedicated Links. ipmg Workshop on Connectivity 25 May 2012

Overview ActivClient for Windows 6.2

Shakambaree Technologies Pvt. Ltd.

BroadSAFE Enhanced IP Phone Networks

22 nd NISS Conference

CoSign by ARX for PIV Cards

mcard CPK Supported Solutions

Axway Validation Authority Suite

INTEGRATION GUIDE MS OUTLOOK 2003 VERSION 2.0

Digital Signatures on iqmis User Access Request Form

Smart Card Certificate Authentication with VMware View 4.5 and Above WHITE PAPER

M-Shield mobile security technology

The Security Framework 4.1 Programming and Design

Compliance and Security Challenges with Remote Administration

Cryptographic and Security Testing Laboratory. Deputy Laboratory Director, CST Laboratory Manager

Secure your Privacy. jrsys, Inc. All rights reserved.

USER GUIDE WWPass Security for Windows Logon

Multi-Factor Authentication Protecting Applications and Critical Data against Unauthorized Access

iphone in Business Security Overview

Ciphire Mail. Abstract

Release Notes. NCP Secure Client Juniper Edition. 1. New Features and Enhancements. 2. Problems Resolved

Multi-Factor Authentication

AD CS.

Symantec Corporation Symantec Enterprise Vault Cryptographic Module Software Version:

Transcription:

epass PKI USB Token A stable and secure PKI product OVERVIEW epass PKI USB Token is the world's foremost cryptographic identity verification module. epass by FEITIAN provides a host of indispensable protective measures for digital communication and transaction through Public Key Infrastructure (PKI) data encryption technology. The token s unique private key functions as an individual s online ID card and brings a new level of accountability and nonrepudiation to the internet. epass is a smart-card chip based token with a convenient USB insert rendering the device operable with almost all computers without the need for a reader. As a two factor authentication solution epass can secure local and remote desktop and network log-on. Key cryptography and the digital signing of emails, documents, and transactions are performed onboard in the secure token framework which is impervious to after-market modification and manipulation. Flexible and Ready to Deploy epass PKI USB Token has been adopted and used successfully in a wide range of different industries from small/medium and large enterprise, government and finance. The production capabilities to fulfill such a dynamic clientele allow FEITIAN to tailor each order to fit the needs of a particular customer; orders can be customized with a specific logo and/or colour scheme to suit the project at hand. Bigger is Better: Economy of Scale Through close cooperation with some of the largest worldwide financial institutions FEITIAN Technologies maintains the stable production of millions of token keys each year enabling the capacity to quickly and efficiently satisfy orders from hundreds to hundreds of thousands. This economy of scale enables a cost effective pricing structure that is unequaled by other manufacturers. With millions of keys in circulation epass PKI USB Token has been consistently improved and refined to the highest degree of quality and stability. International Standards Compliant Construction The construction of principal security requirements featured on the epass PKI USB Token have been carefully tested against the rigorous standards of international third-party experts. The Common Criteria for Information Technology Security Evaluation (CC) has awarded the status of EAL 5+. epass PKI USB Token has received the Federal Information Processing Standard (FIPS) 140-2 level 2, a public standard developed by the United States federal government to 1

distinguish both hardware and software components of cryptographic computer systems, assuring physical tamper-evidence and role-based authentication. Equipped With Actionable User Interface Features epass PKI USB Token comes loaded with Microsoft MiniDriver standard protocol which allows the device to run smoothly on Windows operating systems with no need for additional middleware investments. The end user need only to insert the key into the host computer and the device driver will be automatically installed through the Windows Update function. The MiniDriver design works with Windows built-in Microsoft Base Smart Card Provider to offer native support for all Microsoft CAPI and up-to-date CNG solutions, such as Windows Smart Card Log-on and RDP Log-on. Certified by PCSC-Lite/LibCCID group the device can provide built-in support for Linux or MAC operating systems and/or applications. epass PKI USB Token works with FEITIAN private PKCS#11 library or OpenSC PKCS#11 library for integration into popular web browsers such as Firefox as well as various email clients. BENEFITS Trusted two-factor authentication on epass safeguards powerful onboard features. Two-factor authentication is based on something you have: your hardware key; and something you know: your personal identification number (PIN). Together these two facets of protection ensure that epass is not subject to unauthorized utilization. Two-factor authentication protects the integrity of valuable certificate based PKI technology like individual credentials, passwords, and the private key. Authentication is established by the proper execution of a unique PIN code upon token log-on and is necessary to perform higher level device functions. Digital signature affixes a virtual watermark to online communications and transactions. Validating the veracity of online communications is a vital component in the effective working process of any organization. When attached to a virtual document a digital signature proves non-repudiation or good faith execution by the owner of the PKI key. epass performs advanced certificate-based signing of data, emails and transactions. If information is modified even by so much as a single character after the signature has been enacted, the credibility will be lost. Secure signing features include global security protocols of triple data encryption standard (3DES) and advanced encryption standard (AES). Self-contained cryptographic processing provides the stable execution of functions impervious to outside manipulation. epass PKI USB Token by FEITIAN offers complete onboard key generation and cryptographic processing all self-contained in the secure environment of the hardware key. With significant user memory the key can store and maintain multiple certificates, keys, passwords, data and application programs so there is no need to purchase multiple devices. Integrate and deploy advanced smart card chip based technology in a user friendly format 2

epass PKI USB Token is based on a smart card chip, that interacts with the host computer through its sleek USB Token, providing powerful smart card technology without the need for additional hardware purchase such as a compliant card reader. The compact key design and convenient USB interface make epass PKI USB Token easier to use and easier to maintain than multiple component card systems or one-time PIN keys. The key is engineered to support a wide range of portable systems and desktop applications included and enabled through cryptographic API support that encompasses PKCS #11, Microsoft CAPI, Microsoft and Apple PC/SC. Personalize your security solution with unique customization: your security/your way FEITIAN recognizes the significance of the work, trust, and reputation that went into building your brand and that is why epass PKI USB Token can easily be customized with unique logo printing as well as distinctive colour and branding schemes. Software OEM customization services are also available for large or special projects. FEATURES Built-in high-performance secure smart card chip Smart card chip certified by Common Criteria EAL 5+ On board RSA, AES, DES/3DES, SHA-1, SHA-256 algorithms approved by NIST FIPS CAVP Hardware random number generator 64KB EEPROM memory to store private keys, multiple certificates and sensitive data FEITIAN Card Operating System with proprietary IP Design according to FIPS 140-2 level 3 standard, FIPS 140-2 level 2 certified Secure messaging ensures confidentiality between the device and the application Support X.509 v3 standard certificate. Support storing multiple certificate on one device Onboard RSA2048 key pair generation, signature and encryption 64 bit universal unique hardware serial number Temper evident hardware USB Token USB full speed device Compliant with ISO 7816 1-4 8 9 12, PC/SC and CCID device Water resistant with glue injection (under evaluation) Flexible hardware customization options such as logo, colour and casing Reliable middleware supports multiple operating systems Supports Windows, Linux and Mac OS Compliant with Windows mini driver standard, work with Microsoft Base Smart Card CSP, supports Microsoft smart card enrollment for windows smart card user and smart card logon Support PKCS #11 standard API, Microsoft CryptoAPI and Microsoft CryptoAPI : Next Generation (CNG) Work with PKCS#11 & CSP compliant software like Netscape, Mozilla, Internet Explorer and Outlook Easy integration with various PKI applications 3

Ideal device to carry digital certificates and works with all certificate related applications Highly security ensured device for computer and network sign-on Easy-to-use web authentication, Plug & Play under Windows systems Support document, email and transaction signature and encryption SPECIFICATION Product Specification Supported Operating System 32bit and 64bit Windows XP SP3, Server2003, Vista, Server2008, Seven 32bit and 64bit Linux MAC OS X Middleware Microsoft Windows MiniDriver Windows middleware for Windows CSP Direct-called library for PKCS#11 under Windows, Linux and MAC Standards X.509 v3 Certificate Storage, SSL v3, IPSec, ISO 7816 1-4 8 9 12, CCID Cryptographic RSA 512/1024/RSA 2048 bit Algorithms ECDSA 192/256 bit DES/3DES AES 128/192/256 bit SHA-1 / SHA-256 Cryptographic Onboard key pair generation Functions Onboard digital signature and verification Onboard data encryption and decryption Cryptographic APIs Microsoft Crypto API (CAPI), Cryptography API: Next Generation (CNG) Microsoft Smart Card MiniDriver PKCS#11 PC/SC Processor 16 bit smart card chip (Common Criteria EAL 5+ certified) Memory Space 64KB (EEPROM) Endurance At least 500,000 write/erase cycles Data Retention More than 10 years Connectivity USB 2.0 full speed, Connector type A Interface ISO 7816 CCID Power Consumption Less than 250mW Operating 0 C ~ 70 C Temperature (32 F ~ 158 F) Storage Temperature -20 C ~ 85 C (-4 F ~ 185 F) 4

Humidity Water Resistance 0% ~ 100% without condensation IPX8 with glue injection (under evaluation) Feature varies according to product model Casing Specification Dimension Weight Colour Material Label 53.3mm x 16.5mm x 8.5mm 4.5 (without glue injection) Blue PC (Polycarbonate) Inside front side socket Size: 20mm x 6mm Serial Number Customization Ink printed at back side of the case or laser printed on USB connector Alternative casing colour (blue, brown, green, grey, purple, red) Glue injection to improve physical resistance * Label logo * * Require minimum purchase volume Certification & Compliance FIPS 140-2 Level 2 Certified Common Criteria EAL 5+ (chip level) Microsoft WHQL Linux PCSC-Lite/LibCCID RoHS Check Point Entrust Ready USB CE FCC 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information