entrust truepass architecture and picture
To see architecture picture, please press 'View'
Entrust TruePass characteristics:
Client Side:
Divided into multiple parts or web tiers.
Firewalls placed between these web tiers
Technical:
TruePass client component is a small java applet (~150 kb) that is transparently downloaded to a user’s browser.
Entrust supports the encryption and decryption for the user data beyond the web server, they call it as end-to-end encryption protects.
Uses 168-bit 3DES for data transfer to and from web server.
Entrust ID storage:
Roaming entrust profile – stored in roaming server
An Entrust roaming digital ID is a standards Entrust digital ID based on two key pair model, containing both key pairs and the corresponding certificates for the user. All IDs are encrypted128-bit using symmetric key. These are encrypted again to cause two-level encryption and are stored in standard X.500 or LDAP directory. Every entrust truepass session is protected with 128-bit SSL.
Desktop entrust profile – stored in the desktop
Saves ID in browser memory. Browser cookies were created to provide context-oriented applications with the ability to overcome the stateless nature of the web using HTTP 1.x standard. The session cookies are cleared when user logs off or closes the browser. These cookies contain the encrypted information that are signed TruePass and cryptographically verified by Entrust TruePass SVM (Session Validation Module)
Microsoft windows digital ID store
Smart card thru the windows security framework
0 Comments:
Post a Comment
<< Home