IdentiPHI to Incorporate Certicom’s ECC Security into New Biometric and Smart Card Authentication Products for Businesses and Government Agencies

MISSISSAUGA, Ontario – (Nov. 28, 2007) – Certicom Corp. (TSX: CIC) today announced that it has licensed its Elliptic Curve Cryptography technology to IdentiPHI Inc., an industry leader in enterprise advanced authentication, single sign-on and endpoint management for Suite B compliance. IdentiPHI will incorporate Certicom’s ECC algorithms into a new line of enterprise security products designed for the authentication marketplace.

Suite B is the set of cryptographic algorithms recommended by the National Security Agency (NSA) to secure government communications. The private sector also is beginning to implement Suite B algorithms in a range of products and services.

By adding this level of security into its Enterprise Security Suite of Advanced Authentication products for biometric and smart card devices, IdentiPHI meets the NSA’s Suite B Cryptography recommendations. Furthermore, through this licensing agreement, IdentiPHI customers in the authentication market will benefit from Certicom’s advanced ECC technology to secure their applications today and for decades to come.

“The authentication market is highly competitive and Certicom’s ECC technology allows us to build new products with biometric and smart card capabilities that meet the strict security demands of government agencies as well as businesses around the world,” said Mark Norwalk, Chief Technology Officer, IdentiPHI. “Certicom’s ECC technology ensures that our customers will have the most efficient and secure implementation of ECC available.”

ECC is used in a growing number of sectors ranging from networking, consumer electronics, wireless devices and semiconductors to government and financial services. In 2005, the NSA recommended ECC as the public-key crypto-system to protect classified and unclassified government communications. Known as Suite B, these recommendations are part of an initiative to upgrade the security infrastructure of government communications to meet present and future security needs.

“The need for advanced cryptographic security among government agencies and businesses is driving the demand for Certicom’s NSA-approved ECC technology,” said Bernard W. Crotty, president and CEO of Certicom. “Organizations today have increasingly stringent security requirements and embedding our ECC security into IdentiPHI’s portfolio of enterprise security products will give the highest level of cryptography available to customers that IdentiPHI serves.”


Headquartered in Austin Texas, IdentiPHI is an innovative technology company offering a comprehensive suite of enterprise security solutions and consulting services. Comprised of experienced thought-leaders and partners in the industry, IdentiPHI is setting the standard for what organizations are looking for in a security solution. IdentiPHI provides flexible applications tools and integration that meet or exceed current legislation requirements to strengthen identity management and advanced authentication systems. We are defining security technology to meet the evolving challenges of today's ever changing fast-paced business needs.
On September 4th, IdentiPHI, Inc. and Saflink® Corporation (OTC Bulletin Board: SFLK - News) announced a merger agreement. This merger is expected to strengthen IdentiPHI's position in the enterprise security solutions market by combining a rich technology portfolio with established and growing distribution channels. For more information please call our toll free line at 888-436-8744, or visit http://www.identiphi.net/.


Certicom protects the value of content, applications and devices with government-approved security. Adopted by the National Security Agency (NSA) for government communications, Elliptic Curve Cryptography (ECC) provides the most security per bit of any known public-key scheme. As the global leader in ECC, Certicom security offerings are currently licensed to more than 300 customers including General Dynamics, Motorola, Oracle, Research In Motion and Unisys. Founded in 1985, Certicom’s corporate offices are in Mississauga, Ontario, Canada with worldwide sales and marketing headquarters in Reston, Virginia and offices in the U.S., Canada, Europe and China. Visit http://www.certicom.com/.

For further information, please contact:

For Certicom

For IdentiPHI  

John Conrad

Chris Collier  

Merritt Group, Inc.

512-492-6220 ext 107  




Certicom, Certicom ECC Core, Certicom Security Architecture, Certicom Trust Infrastructure, Certicom CodeSign, Certicom KeyInject, Security Builder, Security Builder API, Security Builder BSP, Security Builder Crypto, Security Builder ETS, Security Builder GSE, Security Builder IPSec, Security Builder MCE, Security Builder NSE, Security Builder PKI and Security Builder SSL are trademarks or registered trademarks of Certicom Corp. All other companies and products listed herein are trademarks or registered trademarks of their respective holders. Information subject to change.
Except for historical information contained herein, this news release contains forward-looking statements that involve risks and uncertainties. Factors which could cause actual results or events to differ materially from current expectations include, among other things: the ability of the Company to successfully implement its strategic initiatives and whether such strategic initiatives will yield the expected benefits; the ability of the Company to develop, promote and protect its proprietary technology security breaches or defects in the Company's products; competitive conditions in the businesses in which the Company participates; changes in consumer spending; the outcome of legal proceedings as they arise; general economic conditions and normal business uncertainty; consolidation in the Company's industry and by its customers; customer preferences towards product offerings; the risk that customers may cancel their contracts with the Company; reliance on a limited number of customers; demand for ECC-based technology; performance of the Company's management team and the Company's ability to attract and retain skilled employees; operating the Company's business profitably; fluctuations in revenue and foreign currency exchange rates; interest rate fluctuations and other changes in borrowing costs; the ability to develop and maintain strategic relationships; and other factors identified under the heading "Risk Factors in the Company's annual information" form dated July 26, 2006 and filed on SEDAR at www.sedar.com.