Public key infrastructure

Protection of IS, electronic transactions and communications with the use of public key encryption.

For its current and potential future customers, the company OKsystem can ensure a professional and fully competent service in the area of PKI, from consultation and schooling, analytical and development work right up to the delivery of the entire system, including certification and registration authorities, database system, cryptographic hardware, smart cards, readers and, naturally, full subsequent support. The use of our experience is the most effective way to handle the technology of electronic signature, strong authentication and encryption and maximum use of their potential.

PKI – infrastructure with public key

PKI (Public-Key Infrastructure) includes software, technology and services for the use of encryption with a public and private key allowing the protection of information systems, electronic transactions and communication.

PKI combines many components – digital certificates, keys, asymmetrical cryptography, certification authorities and applications for the entire network of security architecture. Typical PKI corporate infrastructure includes the secure issue of digital certificates to individual users and servers, integration with corporate directory, tools for the management, renewal and cancellation of certificates, integration into applications and training, services and support associated therewith.

PKI protects information in several basic ways:

• authentication of access (authentication of identity of user, the PKI replaces user IDs and passwords, which are easy to guess and are frequently lost)
• verification of integrity (non-violation) of message
• undeniability of transaction using electronic signature, which is used in communications with government office or web purchase
• Ensuring the privacy (non-reading) of a consignment during its transport via internet using a suitable combination of symmetric and non-symmetric encryption

Solution of PKI security from the company OKsystem

OKsystem deals with the solution of PKI security based on the implementation of PKI via its own original solution of the certification and registration authority, use of smart cards and universal integration software. A certification authority is implemented on a portable Java platform and robust Oracle database, it allows the use of safe cryptographic hardware and can be scaled using any number of instances. The registration authority in the context of multitier architecture allows the distributed receipt and verification of requests for certificates and the issue of certificates via the certification authority. Smart cards can be used not only on the side of the user, authentication for access to a building, access to a system or communication and secure e-business via the internet, but also on the side of the actual certification authority for the secure issue of certificates. Universal integration software (middleware) of OKsmart is capable of cooperating with smart cards of significant manufacturers and integrating them transparently in compliance with standards into the operating environments Windows, Linux and Java.

OKsystem also supplies an out-of-the-box security solution with a smart card called OKsmart Pack, which contains an intelligent smart card, USB reader and CD with complete software.