OpenTrust

• Complete credential management for Public Key certificates in IT systems
• Complete life cycle management of digital identities for all entities, users, devices and applications
• A market-proven solution with low Total Cost of Ownership
• Rapid connectors to other IT system components
• An open, modular and highly scalable solution
• Full local or centralized certificate and key life cycle management
• Full support for multiple Certificate Authorities for single or multiple applications
• Modular light architecture for Public-Key Operations (PKO)

The pace of technological development is accompanied by increasingly sophisticated cyber criminals who threaten the IT infrastructures of enterprises worldwide. This has led to the need for more advanced security solutions to combat such high level risks.

OpenTrust PKI is an open, modular and highly scalable solution designed to address this need. Innovative and market-proven, OpenTrust PKI is one of OpenTrust’s core products for building a trusted ecosystem.

OpenTrust PKI creates, issues and manages the digital identities of users or devices within a trusted infrastructure. It oversees the complete credential management for Public Key certificates in IT infrastructures and is compatible with any kind of smart card or token that can hold an X.509 certificate and a key pair.

The modular architecture of OpenTrust PKI supports single or multiple applications, with a choice of centralized or local management of keys and certificates.

OpenTrust PKI can be used as a dedicated limited-scope PKI to form a PKO (Public Key Operations) service as defined by the Gartner Group.

OpenTrust PKI is seamlessly integrated into the existing corporate IT infrastructure and databases through its simplicity by design concept. It manages the entire life cycles of the digital identities of all entities, users, devices and applications within the IT system, providing the foundations for a secure and trusted ecosystem.

• Offline/Online Root Certification Authority
• Support for multiple Certification Authorities
• Escrow and key recovery
• Predefined workflows to conform with security policies
• Enrollment Entity
• SCEP connector, CMC connector and SOAP connectors
• Digital Certificate and CRL publication mechanisms
• Native integration with Microsoft Windows environment: Active Directory

• Common Criteria EAL3+ certification
• Support for LDAPv3 protocol
• Support for CRLv2 and OCSP
• Web 2.0 User and Administration Graphical Interfaces
• RA (Registration Authority) and EE (Enrollment Entity) SOAP Connectors to facilitate integration with third-party products
• Native integration with OpenTrust SCM
• SCEP protocol support (CISCO network devices, CISCO Wi-Fi telephones, iPhone / iPad)
• Support for ECDSA and GOST Elliptic Curve Cryptography
• Integrated monitoring SNMP / Web Interface
• Workstations and Microsoft Domain Controller enrollment support (Windows XP/SP3, Windows Vista SP1, Windows 7, Windows 2003, Windows 2008)
• Multilingual support (UTF8)
• Supported Web browsers: Firefox 3.5, 3.6, 4, IE 7, IE 8, IE9, Chrome

A global technology leader for the Aerospace, Space, Defense, Security and Transportation markets with revenues of 12.7 billion Euros and 68,000 employees in 50 countries.

• Implementation of a single enterprise badge for both physical (MIFARE) access (to premises, canteen, etc.), strong authentication and encryption
• Seamless migration of legacy PKI to OpenTrust PKI, with the integration of over 30,000 previously deployed badges