PKI TokensAuthentication, Encryption and Digital Signatures
PKI tokens provide secure storage for digital certificates and private keys. They allow public-key cryptography and digital signatures
to be leveraged securely, without risk of leaking the private key information.
Sensitive documents can be encrypted for storage or transfer using public-key cryptography, ensuring that only the intended user can then decrypt the document for viewing later.
By digitally signing a message or document, a recipient can be assured that the sender is trusted.
Similar to Authenticity Checking, the use of digital signatures on sensitive messages or documents assures recipients that the data has not been modified after the signature was created.
Use digital certificates to validate the identity of a user when they are accessing a restricted system or resource.
What is PKI?
PKI, which stands for Public Key Infrastructure, is a system which creates, stores and distributes digital certificates. Digital-certificates
are used to secure the transfer of information, assert identity information and verify the authenticity of messages through public
key cryptography and digital signatures.
In a PKI, digital certificates are issued by a Certificate Authority (CA) and bind public keys with identities (eg, users).
PKI security can be deployed in web applications, online banking, BYOD, e-ID, e-Healthcare and more.
Hardware PKI Tokens
PKI tokens are hardware devices that store digital certificates and private keys securely. When you need to encrypt, decrypt or sign something, the token does this
internally in a secure chip meaning the keys are never at risk of being stolen.
We supply the following PKI tokens:
USB PKI Token
PKI Smart Card
Secure storage of personal identity information, digital certificates and private keys in a tiny keychain sized USB key. Supports on-board encryption/decryption
and digital signatures. Driverless on Windows, Mac and Linux.
Secure storage of personal identity information, digital certificates and private keys in a standard sized card. Supports on-board encryption/decryption
and digital signatures. NFC-enabled for contactless applications. Can be used with any of our smart card readers.
Onboard key pair generation
Onboard digital signature and verification
Onboard data encryption and decryption
PKCS#11 and Microsoft CSP support
32-bit ARM-based Smart Card Chip (CC EAL 6+)
Java Card 2.2.2
Global Platform 2.1.1
X.509 v3 Certificate Storage
SSL v3, IPSec
Onboard 3DES, SHA-1, SHA-256, RSA 512/1024/2048, AES, ECDSA 192/256 bit