Cryptosec Openkey CA

Certification Authority

SKU: Cryptosec Openkey CA Categories: ,

Cryptosec CA is an appliance equipped with Cryptographic Software and Hardware (HSM) integrated into a single device, which considerably reduces the product’s costs and installation time.

“Cryptosec CA allows for active – passive configuration with Database replication.”

It is easily configured through an HTTPS interface requiring an operator certificate. This authenticated connection is totally secure.

The safekeeping of the authority’s certificate keys as well as the certificate signature operation and the revoked certificate list (CRL) are performed in the HSM, which is integrated into the appliance. In addition to protecting the keys, this contributes to speeding up the generation processes.

The certificates generated and the CRLs can be posted on different RAs on a regular basis. The system includes a service for synchronising its clock via NTP.

It should be highlighted that all the data generated (Certificates and CRLs) are stored in the appliance’s database.

The Certification Authority is the most important element of a public key infrastructure (PKI).
Cryptosec CA can perform two roles:

  • Root Certification Authority
  • Subordinate Certification Authority Its mission consists of generating Digital Certificates in a single-key structure (PKI).

“As a general rule, a Root CA does not generate end-entity
certificates, but instead certifies other CAs known as Subordinates, which in turn are responsible for generating Digital Certificates for the end user. And this is precisely where Cryptosec OpenKey CA plays an important role as an essential element of the public key infrastructure (PKI).”