Entrust Services
High level services
Internet Security Consulting
Custom Application Development
Deployment Services
Training
Systems Integration Services
Customer Support
Services provided by Entrust TruePass [Technical]:
Client
· Secure Session Management
o The cookies are signed and verified intermittently by TruePass SVM.
· Accessing user identities
o User name and password are put thru cryptographic hash (SHA1). Through the Entrust authority Roaming server, the user’s digital identity is securely downloaded to the entrust truepass applet.
· Digital Signatures
o The Entrust truepass applet is able to sign data that has been targeted for signature by the user. The resulting standard is PKCS#7 object. Entrust is a CA [Certificate Authority].
· Bi-directional data encryption
o The Truepass applet can encrypt data for a target backend system. Using a valid certificate, Entrust TruePass uses strong 168-bit 3DES encryption to protect data that is being submitted. The resulting standard PKCS#7 object is transmitted securely through the Web server, and on to a back-end system. Backend systems also have the ability to encrypt HTML data for individual Entrust TruePass users. The Entrust TruePass applet will encrypt the data enabling the browser to render the unencrypted data into the HTML form transparently.
Server
o Session Validation Module
o The Session Validation Module (SVM) controls access to Web applications and content by intercepting URL requests and enforcing authentication policy decisions defined by the company. As the SVM is installed on various supported Web servers, it is configured differently for each. It is a plug-in for Netscape iPlanet™, a filter for Microsoft® IIS, and a module for IBM® HTTP Server. The Session Validation module verifies whether requests for Entrust TruePass-protected pages are from previously authenticated users.
o Entrust Truepass Servlets
o The security services provided by Entrust TruePass are provided through Java servlets installed on a supported J2EE Web application server. These servlets perform tasks including authentication verification & retrieval, server signing of data, and CRL checking of encryption certificates. There are many benefits that are gained by deploying Entrust TruePass on a Web application server, including leveraging the built-in load balancing, fail-over and high-availability features by default.
Entrust TruePass services [General]
· Automatic User Enrollment Service
o By Entrust Authority Self-Administration Server
· Authentication retrieval & Secure session services
· Resource Protection Service
· Digital Signature Service
o Message signing
o Transaction signing
· Persistent Encryption Service
· Security Management Service
o Key and Certificate Lifecycle Automation
o Key backup & Recovery
· Web Access Control Integration (Optional)
o Personalized services based on the customer logging history
Internet Security Consulting
Custom Application Development
Deployment Services
Training
Systems Integration Services
Customer Support
Services provided by Entrust TruePass [Technical]:
Client
· Secure Session Management
o The cookies are signed and verified intermittently by TruePass SVM.
· Accessing user identities
o User name and password are put thru cryptographic hash (SHA1). Through the Entrust authority Roaming server, the user’s digital identity is securely downloaded to the entrust truepass applet.
· Digital Signatures
o The Entrust truepass applet is able to sign data that has been targeted for signature by the user. The resulting standard is PKCS#7 object. Entrust is a CA [Certificate Authority].
· Bi-directional data encryption
o The Truepass applet can encrypt data for a target backend system. Using a valid certificate, Entrust TruePass uses strong 168-bit 3DES encryption to protect data that is being submitted. The resulting standard PKCS#7 object is transmitted securely through the Web server, and on to a back-end system. Backend systems also have the ability to encrypt HTML data for individual Entrust TruePass users. The Entrust TruePass applet will encrypt the data enabling the browser to render the unencrypted data into the HTML form transparently.
Server
o Session Validation Module
o The Session Validation Module (SVM) controls access to Web applications and content by intercepting URL requests and enforcing authentication policy decisions defined by the company. As the SVM is installed on various supported Web servers, it is configured differently for each. It is a plug-in for Netscape iPlanet™, a filter for Microsoft® IIS, and a module for IBM® HTTP Server. The Session Validation module verifies whether requests for Entrust TruePass-protected pages are from previously authenticated users.
o Entrust Truepass Servlets
o The security services provided by Entrust TruePass are provided through Java servlets installed on a supported J2EE Web application server. These servlets perform tasks including authentication verification & retrieval, server signing of data, and CRL checking of encryption certificates. There are many benefits that are gained by deploying Entrust TruePass on a Web application server, including leveraging the built-in load balancing, fail-over and high-availability features by default.
Entrust TruePass services [General]
· Automatic User Enrollment Service
o By Entrust Authority Self-Administration Server
· Authentication retrieval & Secure session services
· Resource Protection Service
· Digital Signature Service
o Message signing
o Transaction signing
· Persistent Encryption Service
· Security Management Service
o Key and Certificate Lifecycle Automation
o Key backup & Recovery
· Web Access Control Integration (Optional)
o Personalized services based on the customer logging history
posted by Seshu at 12:47 AM
0 Comments:
Post a Comment
<< Home