Contact   |   Repository
  Solutions & Services Digital Certificate Services Managed PKI  Key Manager
   
 
Key Management Services
   
  Key Management Services provide key issuance, revocation and recovery services for enterprises deploying public key infrastructure (PKI) to secure a broad array of network applications. Expanding your PKI solution to include Key Management Services gives you added flexibility and the following features:
  • centralised key generation;
  • distribution and backup capabilities;
  • archiving of key histories;
  • dual key pair support, and
  • a two-step recovery process that provides far greater security than in-house software alone.
   
  Features and Benefits
   
 
  • Dual Key Support - Key Management Services support dual keys by providing central generation and back up of encryption keys along with distributed generation of signing keys. Dual key pair support is critical for applications that utilise both encryption and digital signatures.


  • High Security Recovery – Our Key Management Services combine local software and backup of the key pairs with a key recovery service located at SafeScrypt's secure facilities. Private keys are stored at your enterprise in a secure, encrypted form that provides strong protection without requiring you to build a high security facility. Recovery of a key pair occurs by retrieving from VeriSign a unique key that can unlock the backed up version of that specific key, but without your end user encryption keys ever leaving your premises. This removes any single point of compromise from the system, since even if someone has a complete copy of the database of backed up keys, they will not be authorised to get the recovery keys from VeriSign which are needed to access the database.


  • Centralised Key Management - Key Management Services' centralised key generation allows an enterprise administrator to set up an end user's security, simplifying the process for users. The administrator can quickly generate encryption key pairs, trigger a client application to generate a signing key pair, coordinate certificate acquisition for both key pairs and distribute the keys and certificates to the end user, without the end user having to register and request a certificate. Enterprises deploying PKI primarily for authentication, access control or non-repudiation without encryption may not need dual key support and key recovery, but they can still benefit from Key Management Services' centralised management capability. Key Management Services significantly reduces end user support costs and PKI deployment time.
Key Management Services is part of the our Managed PKI product line. It works with Microsoft IE, Outlook XP, 2000, and 98, IBM Lotus Notes R5, and Netscape Communicator as well as with applications enabled with VeriSign-compatible toolkits. Key Management Services does not require proprietary client software and allows you to build and operate a best-of-breed enterprise security solution.
   
   
  Site Map  |  Privacy Policy  |  Discliamer  © Copy right SafeScrypt, 2004. All Rights Reserved.