Certificate Services

Use Certificates for Authentication

A unique solution for identification and signing

Certificate Services is an application with plugins that can be integrated in to a variety of applications and systems to handle login, signing and authorization control coupled to different type of certificates. In Sweden a lot of authentication on the internet is handled with something called “electronic-identification”, which is a type of certificate. Nordic Edge provide banks, insurance agencies and public social agencies with solutions to handle certificate authentication and to checks that a presented certificate and issuer are valid, a control for validity is also made via a CRL list or OCSP transaction.

Modules included in Certificate Services

Digital Signatures

This module generates and verifies different digital signatures. PKCS#7, S/MIME and XML Digital Signatures are supported through a simple Web Services API or a JAVA API. Verfication can be made internally or by calls to external verification services.

Also available in this module are digest functions for generating message digests, the digests provided by the default installation are: SHA-1,MD-5,RIPE-MD160. Other digests are available on demand.

Registration

This module checks if an authenticated user exists in an applications directory service or SQL database. If the user doesn’t exist the module can create the user from information obtained from the users certificate, for example first and last name, and unique identifier (Swedish personal number in some cases).

Key Benefits of Certificate Services

  • Improved Authentication
  • Secures your companies information and applications
  • X509.3 standard compliant
  • Digital Signature support, PKCS#7 and XML Digital Signature generation and verification.
  • Message Digest support: MD-5, SHA-1 and RIPE-MD160 generation and verification.
  • S/MIME support: E-Mail signature generation and verification using the S/MIME standard.
  • Support for proprietory certificate solutions
  • Remote OSIF service support
  • Remote Web Services support
  • Leverages existing infrastructure and resources
  • No expensive equipment investments
  • Rapid integration with existing authentication infrastructure