This public key infrastructure toolkit offers developers quick and easy access to the following features: | | Security Builder PKI-C | Security Builder PKI-J | | Programming Language | C | Java | | Supported Hardware Accelerators/ Hardware Tokens | Chrysalis ITS Luna 2 and CA3
Eracom protectOrange
PKCS #11/Cryptoki | Chrysalis ITS Luna 2 and CA3
JCE compliant token | | PKCS Compliant | #1,3,5,7,8,9,10,11,12 | #1,3,5,7,8,9,10,11,12 | | X.509 Certificates | versions 1,2, and 3 | versions 1, 2, and 3 | | | supported character sets * ASCII
* Latin-1
* UTF-8
* UCS-2 supported key types * ECC
* DH
* DSA
* RSA | supported character sets * ASCII
* BMP
* IA5
* PRintable
* T61
* Visible
* Latin-1
* UTF-8
* UCS-2 supported key types * ECC
* DH
* DSA
* RSA | | X.509 CRLs | versions 1 and 2 | versions 1 and 2 | | X.509/PKIX Certificate validation | * CRLs
* LDAP certificate and CRL lookup
* configurable validation rules
* stored certificate and CRL lookup
* hybrid certificate chains
* per-certificate validation results | * CRLs
* LDAP certificate and CRL lookup
* configurable validation rules
* stored certificate and CRL lookup
* hybrid certificate chains
* per-certificate validation results | | Certificate requests | PKCS #10 | PKCS #10, CRS, CMP | | Password-Based Encryption (PBE) | PKCS #5v1.5 * DES with MD2
* DES with MD5
* DES with SHA-1
* RC2 with MD2
* RC2 with MD5
* RC2 with SHA-1 PKCS#5v2.0 * DES with HMAC SHA-1
* 3DES with HMAC SHA-1
* AES-128 with SHA-256
* AES-256 with SHA-256 PKCS#12v1.0 * RC2-40 with SHA-1
* RC2-128 with SHA-1
* RC4-40 with SHA-1
* RC4-128 with SHA-1
* 2-key 3DES with SHA-1
* 3-key 3DES with SHA-1 | PKCS #5v1.5 * DES with MD2
* DES with MD5
* DES with SHA-1
* RC2 with MD2
* RC2 with MD5
* RC2 with SHA-1 PKCS#12v1.0 * RC2-40 with SHA-1
* RC2-128 with SHA-1
* RC4-40 with SHA-1 | | CMS/PKCS #7 | EnvelopedData (ECMQV, ECDH, DH, PKCS#1, …)
SignedData (ECDSA, DSA, PKCS#1, …)
EncryptedData (with PBE and non-PBE cryptography)
unlimited data size (BER)
unlimited # of attributes
secure mailing lists
signed receipts | EnvelopedData (ECMQV, ECDH, DH, PKCS#1, …)
SignedData (ECDSA, DSA, PKCS#1, …)
EncryptedData (with PBE and non-PBE cryptography)
unlimited data size (BER)
unlimited # of attributes
secure mailing lists
signed receipts | | PKCS #8 PrivateKeyInfo | encrypted and unencrypted
with PBE and non-PBE cryptography | encrypted and unencrypted
with PBE and non-PBE cryptography | | Cryptographic Providers | * Security Builder Crypto-C
* Security Builder GSE
* Cryptoki/PKCS#11* Contact Certicom for availability of support for other providers. | * Security Builder Crypto-J
* JCE 1.2.2
* Cryptoki/PKCS#11 Contact Certicom for availability of support for other providers. | | IETF RFC compliant | PKIX: 3280, 3279, 2459
S/MIME:3852, 3565, 3370 3369, 3278, 2634 | PKIX: 3280, 3279, 2459
S/MIME:3852, 3565, 3370 3369, 3278, 2634 | | Optimized Processors | Texas Instruments OMAP
ARM | NA | | Implementation Code Size Range | 100 KB-400 KB | 1.5 MB | | Supported Platforms | AIX 5.1/5.2 32-bit and 64-bit (Power PC)
AIX 4.3 32-bit (Power PC)
HP-UX 11.00 32-bit and 64-bit (RISC)
HP-UX 11.23 32-bit and 64-bit (Itanium)
MacOS 10.2
Montavista Linux (ARM)
Palm OS 3.5/4.0/4.1/5.0 (Dragonball/ARM)
Red Hat Linux AS 2.1/3.0 (x86 and Itanium)
Solaris 2.8/2.9 32-bit and 64-bit (SPARC)
Symbian 7 and 9 (ARM/OMAP)
Tru64(Alpha)
VxWorks 5.4 (ARM)
Windows (x86 and Itanium)
Windows CE 3.0/4.0 Pocket PC Edition (StrongARM/XScale) Contact Certicom for additional platforms. | JDK 1.3, 1.4 |
|
