Entrust Technologies Previews Next Generation Entrust/PKI Solution.ORLANDO, Fla.--(BUSINESS WIRE)--June 15, 1999-- ENTRUST(NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :ENTU) Entrust SecureSummit(TM) '99 -- New Security Features, Policy Controls and Complementary Products Bring Value-Added Trust Solutions to E-Business Entrust(R) Technologies Inc. (Nasdaq:ENTU), the global leader for solutions that bring trust to e-business, is providing Entrust(R) SecureSummit(TM) 99 attendees with a technological preview of the newest release of its Entrust/PKI(TM) software. Entrust/PKI(TM) 5.0 is a managed PKI (Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of solution that enables organizations to conduct trusted e-business by allowing users to easily encrypt, digitally sign, and authenticate electronic transactions across all applications with best-in-class security, flexibility, ease of use and low cost. A preview of Entrust/PKI 5.0 will be shown in the Solutions Expo at Entrust SecureSummit '99, June 15-17 in Orlando, Florida The city of Orlando is a major city in central Florida and is the county seat of Orange County, Florida. According to the 2000 census, the city population was 185,951. A 2006 U.S. . Two new complementary PKI products will lower the cost of user registration and improve user mobility, while new policy management capabilities and security features in Entrust/PKI 5.0 will bring organizations increased control and flexibility for their e-business transactions. Core features such as automatic and transparent key and certificate management, key backup and recovery and real-time revocation, as well as the ability to issue and manage certificates for users, applications and network devices, continue to anchor the Entrust/PKI market leadership position. Entrust/PKI 5.0 is designed to work in concert with Entrust Technologies' Desktop Solutions (including the upcoming 5.0 versions -- see today's release: Entrust Technologies Debuts New Desktop Solutions for E-Business), Entrust-Ready(TM) third-party applications, and other applications and devices designed to work with digital certificates. "As e-business over the Internet, extranets and intranets continues to grow, we're providing customers with more flexible options to scale, manage and establish the trust model of their choice" said John Ryan John Ryan can refer to:
"We're thrilled that multiple Entrust customers, including Scotiabank, one of the largest issuers of digital certificates worldwide, are participating in the Entrust/PKI 5.0 Preview Program to test the new software features," Ryan continued. "We're pleased to see new features like remote administration which will provide us with the capability to deploy secure electronic identities conveniently," said Drew Brown, senior vice president, Electronic Banking, Scotiabank. "Entrust/PKI 5.0 gives us the capability of extending trusted e-business solutions to our customers and employees and integrating additional real-world business applications with our existing PKIs." Entrust Technologies has developed two complementary products to Entrust/PKI 5.0 in order to bring new flexibility and lower costs to customers: - Entrust/Roaming(TM) extends the capabilities of Entrust/PKI 5.0 to deliver a flexible mobile solution for end users to access their credentials from a centrally managed directory without the need for additional authentication mechanisms such as smart cards Example of widely used contactless smart cards are Hong Kong's Octopus card, Paris' Calypso/Navigo card and Lisbon' LisboaViva card, which predate the ISO/IEC 14443 standard. The following tables list smart cards used for public transportation and other electronic purse applications. or tokens. Entrust/Roaming uses SPEKE(TM), the Simple Password Exponential Key Exchange protocol, which Entrust Technologies has licensed from Integrity Sciences Inc., see: http://www.IntegritySciences.com/PKI50.html to ensure the security of mobile access by establishing a full-strength key using an easily-memorized password for authentication. When the roaming-enabled user wants to begin work on an independent PC or kiosk, they simply type the name of their profile and password and are quickly able to begin working. When the user logs out, their credentials are automatically and securely deleted from desktop memory. - Entrust/AutoRA(TM) eliminates administrator involvement in user enrollment and user authentication See authentication. by providing flexible Web-based self-registration and automatic authentication for users. These cost-effective processes help quicken the addition of users to Entrust/PKI to enable more efficient deployment for customers. The solution will include the following new features to improve the flexibility, ease of use, security and affordability of conducting trusted e-business transactions: - PKI Networking: PKI Networking is critical for business-to-business e-commerce as it allows for trusted transactions between two organizations' networks. One feature of PKI Networking is cross-certification to allow users of one PKI to trust transactions from another. Entrust/PKI 5.0 will include support for both hierarchical and peer-to-peer cross-certification to allow organizations to build a PKI network of their choosing. - Automatic CA Key Update: This process allows administrators to choose the appropriate CA key lifetime and algorithm for their organization while making that policy transparent to the end user. - Expanded Algorithm Support: Entrust/PKI 5.0 will support an expanded range of algorithms including the addition of elliptic curve DSA Elliptic Curve DSA (ECDSA) is a variant of the Digital Signature Algorithm (DSA) which operates on elliptic curve groups. As with Elliptic Curve Cryptography in general, the bit size of the public key believed to be needed for ECDSA is about twice the size of the security level, in , IDEA 128-bit symmetric cipher cipher: see cryptography. (1) The core algorithm used to encrypt data. A cipher transforms regular data (plaintext) into a coded set of data (ciphertext) that is not reversible without a key. , RIPEMD RIPEMD Race Integrity Primitives Evaluation Message Digest and RSA (1) (Rural Service Area) See MSA. (2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key. 2048 signing. - RA Policy Controls: The RA (Registration Authority) performs the registration and ongoing administration of users within a PKI. New policy controls in Entrust/PKI 5.0 allow organizations to create RA operator roles with defined responsibilities which contribute to a more flexible organizational structure  This article has no lead section.To comply with Wikipedia's lead section guidelines, one should be written. , improved security and increased administrator efficiency. - User Policy Management: Organizations have the ability to set policy to match their needs, including choice of algorithms and mandating the use of hardware tokens. - Intel RNG See RELAX NG. Support: Entrust/PKI 5.0 will support the hardware-based Intel(R) Random Number Generator A program routine that produces a random number. Random numbers are created easily in a computer, since there are many random events that take place such as the duration between keystrokes. (RNG) which is included in the Intel(R) 810 Chipset and will be included in all future Intel 8xx series chipsets. (See today's release: "Entrust Technologies Announces Business and Technical Agreement with Intel Corp.") A detailed explanation of the core new features in Entrust/PKI 5.0 is available at http://www.entrust.com/entrust/whatsnew.htm. Entrust/PKI software is built on recognized industry standards such as X.509, PKIX PKIX Public Key Infrastructure for X.509 Certificates (IETF) PKIX Public Key Infrastructure X509 , S/MIME See MIME. , LDAP (Lightweight Directory Access Protocol) A protocol used to access a directory listing. LDAP support is implemented in Web browsers and e-mail programs, which can query an LDAP-compliant directory. , PKCS (Public Key Cryptography Standards) Specifications from RSA Laboratories for various techniques used with RSA public key cryptography. With cooperation from security experts worldwide, PKCS #1 covers the RSA standard itself. No. 7/10 and PKCS No. 11. It is the only product of its kind to be validated by the new international standard for IT security, the "Common Criteria (Common Criteria for Information Technology Security) An international standard process for defining security objectives and for evaluating compliance with those objectives. The Common Criteria have largely replaced the Trusted Computer Security Evaluation Criteria (TCSEC), the Canadian for Information Technology Security Evaluation -- version 2.0", simply dubbed Common Criteria (CC). The CC validation is the most comprehensive review in existence of products within the security industry, providing an unequivocal global benchmark against which PKI offerings can be judged. Entrust/PKI has also been validated on four separate occasions, once for every major release, by the rigorous U.S. federal standard FIPS PUB FIPS PUB Federal Information Processing Standard Publication (Federal Information Processing Standards (standard) Federal Information Processing Standards - (FIPS) United States Government technical standards published by the National Institute of Standards and Technology (NIST). and Publication) 140-1 that covers the quality and operation of cryptographic security modules. Entrust/Toolkit(TM) Family of Products: The Entrust/Toolkit family of products will be upgraded to enable new application developers or existing developers of Entrust-Ready(TM) applications to support the new features of Entrust/PKI 5.0. Entrust-Ready applications developed with these new versions of the Entrust/Toolkits will be able to: - Access an expanded number of algorithms including RSA 1024/2048, elliptic curve DSA and IDEA128-bit; - Take advantage of enhanced certificate validation and updated operating system coverage. - Enforce the trust controls associated with PKI Networking. Pricing and Availability Entrust/PKI 5.0 and its complementary products are expected to be available in Q4 1999 for both Windows NT and UNIX UNIX Operating system for digital computers, developed by Ken Thompson of Bell Laboratories in 1969. It was initially designed for a single user (the name was a pun on the earlier operating system Multics). (Solaris) platforms, direct from Entrust Technologies or its channel partners. The server-based components for Entrust/PKI 5.0 are $20,000 US. Per user fees are subject to volume discounts. Pricing for Entrust/AutoRA and Entrust/Roaming is to be announced To be announced (TBA) A contract for the purchase or sale of an MBS to be delivered at an agreed-upon future date but does not include a specified pool number and number of pools or precise amount to be delivered. in the near term. The Entrust family of toolkits is available to developers without cost direct from http://developer.entrust.com. About Entrust Technologies Entrust Technologies Inc. is the global leader in providing products and services that allow e-businesses to manage trusted, secure electronic transactions over today's advanced networks, including the Internet, extranets and intranets. Since 1994, Entrust Technologies has been providing award-winning solutions to global enterprises, government entities, small to mid-sized businesses and individuals. Over four million Entrust Technologies users have been licensed with digital certificates to date. Entrust Technologies Inc. is headquartered in Plano, Texas with offices in Canada, the United States, the United Kingdom, Switzerland, Germany and Japan. For additional company information please visit http://www.entrust.com. In the United States, Entrust is a registered trademark of Entrust Technologies Inc. All Entrust product names are trademarks of Entrust Technologies. All other company and product names are trademarks or registered trademarks of their respective owners. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion