Mocana Unveils First of its Network Applications to Provide Critical Security Management Functionality for Connected Devices.Certificate Management Solution Provides Automated Way to Map Identity to Devices for Internet Scale Deployments SAN FRANCISCO San Francisco (săn frănsĭs`kō), city (1990 pop. 723,959), coextensive with San Francisco co., W Calif., on the tip of a peninsula between the Pacific Ocean and San Francisco Bay, which are connected by the strait known as the Golden -- Mocana Corporation, a software company that is enabling a secure networked society, today announced the availability of Mocana Certificate Management. Certificate Management, the latest extension to Mocana's Device Security Framework, represents a new class of infrastructure software which Mocana calls network applications, and provides critical functionality over networks to connected devices. Mocana's Device Security Framework is made up of a unique combination of device-resident security software and security-centric network applications, such as Certificate Management, and provides a holistic security model for securing devices and device communications. Management of device certificates, which can be thought of as a device's digital identity, is emerging as a way for IT to efficiently manage and administer the security of devices and services across an enterprise or service provider in an automated way. Historically, certificate management was approached manually, but with the number of devices requiring supervision today, manual management has become extremely difficult. "Our research indicates that as connected devices continue to proliferate across all industries, the need to automate security and systems management will be paramount for enterprises and IT organizations," said Glen Allmendinger, president, Harbor Research, Inc. "Connected devices will require security software that can deal with scalability while easing provisioning burdens for end users of devices as well as the service providers and enterprises that deploy them." Being able to efficiently provision and revoke device certificates in an easier, more automated way allows for certificates to be used in a completely different way with connected devices - opening up the potential for an entirely new class of identity-based, Internet-scale end user services. For example, Mocana's Certificate Management solution allows certificate strength security to be used for authentication rather than insecure user names and passwords which could lead to compromised security or SPIT (Spam for Internet Telephony Another term for IP telephony and VoIP. In the late 1990s, some people made a distinction between Internet Telephony and VoIP: Internet telephony referred to voice over the public Internet, while VoIP referred to voice over private IP networks. ) hijacked VoIP services. Adrian Turner, chief executive officer and president of Mocana, commented, "The rate at which connected devices are proliferating is staggering, as everything from handsets to medical devices, retail devices and consumer electronics become connected. IT organizations are experiencing the pain of not only making sure those devices are secure when rolled out, but more importantly, managing the on-going security of those devices." Device manufacturers can now differentiate themselves by offering their customers a complete security model for devices and an easier way to deploy and manage Internet scale device networks such as VoIP handsets. With this capability, device manufacturers can sell more devices without forcing their customers to sacrifice security. Mocana Certificate Management is an embedded and platform-agnostic solution that can work in two enrollment modes - automatic or manual. Mocana Certificate Management is built around the Simple Certificate Enrollment Protocol Simple Certificate Enrollment Protocol is a draft Internet standard (or RFC). The current version is referenced by the IETF as follows: INTERNET DRAFT: draft-nourse-scep-15. (SCEP SCEP Student Career Experience Program SCEP Simple Certificate Enrollment Protocol (Cisco) SCEP Syndicat Canadien des Communications, de l'Énergie et du Papier (Communications, Energy and Paperworkers Union) ), the evolution of the original certificate enrollment protocol developed by Verisign, Inc. and Cisco Systems “Cisco” redirects here. For other uses, see Cisco (disambiguation). Cisco System,Inc. (NASDAQ: CSCO, HKSE: 4333 ) is an American multinational corporation with 54,000 employees and annual revenue of US $28.48 billion as of 2006. , Inc., and is designed to make the issuing and revocation of digital certificates as scalable as possible. Mocana Certificate Management is comprised of the Mocana Certificate Management Client and the Mocana Certificate Management Server. Using Mocana's Certificate Management, organizations can now seamlessly accomplish: * Certificate enrollment and renewal - issuing a certificate to a specific user or device and/or renewing that certificate at regular intervals before expiration; * Certificate revocation - withdrawing a certificate from a specific device for a certain reason, making that device inoperable inoperable /in·op·er·a·ble/ (in-op´er-ah-b'l) not susceptible to treatment by surgery. in·op·er·a·ble adj. Unsuitable for a surgical procedure. ; * Certificate query - obtaining the Certificate Authority certificate and/or obtaining the end entity's certificate; and * CRL CRL - Carnegie Representation Language. Carnegie Group, Inc. Frame language derived from SRL. Written in Common LISP. Used in the product Knowledge Craft. query - obtaining information on whether a certificate has been revoked. Additional Features Mocana Certificate Management is fully configurable and comes with a well-defined set of APIs. Leveraging Mocana's common abstraction layer Software that translates a high-level request into the low-level commands required to perform the operation. The most common abstraction layer is the programming interface (API) between an application and the operating system. , Mocana's Certificate Management works with over fifteen different operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. , including Linux, VxWorks, and ThreadX. Further it: * Provides implementation of the SCEP server, Certificate Authority (CA), and Registration Authority (RA); * Leverages the Mocana PKCS (Public Key Cryptography Standards) Specifications from RSA Laboratories for various techniques used with RSA public key cryptography. With cooperation from security experts worldwide, PKCS #1 covers the RSA standard itself. and crypto libraries, which are FIPS (Federal Information Processing Standards) A series of publications issed by the U.S. National Institute of Standards and Technology (NIST) that specifies information security guidelines for federal government departments and agencies. validated, full featured and standards-based, containing all of the strongest cryptography commonly used for securing systems and devices; * Is easily integrated and portable with different operating systems; * Supports SCEP transactions like certificate enrollment/renewal, certificate revocation operation, querying of the Certificate Authority (CA) or certificate chain, querying of the device certificate, querying of the CRL (Certificate Revocation List In the operation of some cryptosystems, usually public key infrastructures (PKIs), a certificate revocation list (CRL) is a list of certificates (more accurately: their serial numbers) which have been revoked, are no longer valid, and should not be relied on by any system user. ), querying of CA capabilities and server polling in manual authentication mode; * Supports CA and RA implementations allowing registration of end entities, generation of key pairs and CSR (1) (Customer Service Representative) A person who handles a customer's request regarding a bill, account changes or service or merchandise ordered. Agents in call centers are known as CSRs. See call center. (Certificate Signing Request In public key infrastructure systems, a certificate signing request (also CSR or certification request) is a message sent from an applicant to a certificate authority in order to apply for a digital identity certificate. ), signing, publishing certificates and CRLs, and authentication of end entities for certificate enrollment and renewal. Availability Mocana's Certificate Management solution is available today. For more details, visit www.mocana.com/certmgt.html. About Mocana Mocana securely enables Internet-scale applications and services for connected devices. Mocana's industry-leading infrastructure software solutions ensure that wired and wireless devices, networks and services perform and scale with the utmost security - a necessary foundation for a networked society. Customers include Dell, Cisco, Avaya, Nortel Networks (Nortel Networks Limited, Brampton, Ontario, www.nortelnetworks.com) A world leader in telecommunications products, which includes switching, wireless and broadband systems for service providers and carriers, telephones and systems for residential and business users, computer telephony , Harris, Honeywell, Symbol, Net.com and Radvision, among others. Mocana was founded in 2002, is privately-held, and headquartered in San Francisco, California “San Francisco” redirects here. For other uses, see San Francisco (disambiguation). The City and County of San Francisco (EN IPA: [sænfrənˈsɪskoʊ] . For more information, visit www.mocana.com. To request a free full source code and documentation evaluation of Mocana's security solutions, visit www.mocana.com/evaluate.html |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion