This public key infrastructure toolkit offers developers quick and easy access to the following features:
Security Builder PKI-C | Security Builder PKI-J | |
Programming Language | C | Java |
Supported Hardware Accelerators/ Hardware Tokens | Chrysalis ITS Luna 2 and CA3 Eracom protectOrange PKCS #11/Cryptoki |
Chrysalis ITS Luna 2 and CA3 JCE compliant token |
PKCS Compliant | #1,3,5,7,8,9,10,11,12 | #1,3,5,7,8,9,10,11,12 |
X.509 Certificates | versions 1,2, and 3 | versions 1, 2, and 3 |
supported character sets * ASCII * Latin-1 * UTF-8 * UCS-2 supported key types * ECC * DH * DSA * RSA |
supported character sets * ASCII * BMP * IA5 * Printable * T61 * Visible * Latin-1 * UTF-8 * UCS-2 supported key types * ECC * DH * DSA * RSA |
|
X.509 CRLs | versions 1 and 2 | versions 1 and 2 |
X.509/PKIX Certificate validation | * CRLs * LDAP certificate and CRL lookup * configurable validation rules * stored certificate and CRL lookup * hybrid certificate chains * per-certificate validation results |
* CRLs * LDAP certificate and CRL lookup * configurable validation rules * stored certificate and CRL lookup * hybrid certificate chains * per-certificate validation results |
Certificate requests | PKCS #10 | PKCS #10, CRS, CMP |
Password-Based Encryption (PBE) | PKCS #5v1.5 * DES with MD2 * DES with MD5 * DES with SHA-1 * RC2 with MD2 * RC2 with MD5 * RC2 with SHA-1 PKCS#5v2.0 * DES with HMAC SHA-1 * 3DES with HMAC SHA-1 * AES-128 with SHA-256 * AES-256 with SHA-256 PKCS#12v1.0 * RC2-40 with SHA-1 * RC2-128 with SHA-1 * RC4-40 with SHA-1 * RC4-128 with SHA-1 * 2-key 3DES with SHA-1 * 3-key 3DES with SHA-1 |
PKCS #5v1.5 * DES with MD2 * DES with MD5 * DES with SHA-1 * RC2 with MD2 * RC2 with MD5 * RC2 with SHA-1 PKCS#12v1.0 * RC2-40 with SHA-1 * RC2-128 with SHA-1 * RC4-40 with SHA-1 |
CMS/PKCS #7 | EnvelopedData (ECMQV, ECDH, DH, PKCS#1, …) SignedData (ECDSA, DSA, PKCS#1, …) EncryptedData (with PBE and non-PBE cryptography) unlimited data size (BER) unlimited # of attributes secure mailing lists signed receipts |
EnvelopedData (ECMQV, ECDH, DH, PKCS#1, …) SignedData (ECDSA, DSA, PKCS#1, …) EncryptedData (with PBE and non-PBE cryptography) unlimited data size (BER) unlimited # of attributes secure mailing lists signed receipts |
PKCS #8 PrivateKeyInfo | encrypted and unencrypted with PBE and non-PBE cryptography | encrypted and unencrypted with PBE and non-PBE cryptography |
Cryptographic Providers | * Security Builder Crypto-C * Security Builder GSE * Cryptoki/PKCS#11* Contact Certicom for availability of support for other providers. |
* Security Builder Crypto-J * JCE 1.2.2 * Cryptoki/PKCS#11 Contact Certicom for availability of support for other providers. |
IETF RFC compliant | PKIX: 3280, 3279, 2459 S/MIME:3852, 3565, 3370 3369, 3278, 2634 |
PKIX: 3280, 3279, 2459 S/MIME:3852, 3565, 3370 3369, 3278, 2634 |
Optimized Processors | Texas Instruments OMAP ARM |
NA |
Implementation Code Size Range | 100 KB-400 KB | 1.5 MB |
Supported Platforms | AIX 5.1/5.2 32-bit and 64-bit (Power PC) AIX 4.3 32-bit (Power PC) HP-UX 11.00 32-bit and 64-bit (RISC) HP-UX 11.23 32-bit and 64-bit (Itanium) MacOS 10.2 Montavista Linux (ARM) Palm OS 3.5/4.0/4.1/5.0 (Dragonball/ARM) Red Hat Linux AS 2.1/3.0 (x86 and Itanium) Solaris 2.8/2.9 32-bit and 64-bit (SPARC) Symbian 7 and 9 (ARM/OMAP) Tru64(Alpha) VxWorks 5.4 (ARM) Windows (x86 and Itanium) Windows CE 3.0/4.0 Pocket PC Edition (StrongARM/XScale) Contact Certicom for additional platforms. |
JDK 1.3, 1.4 |