VASCO Data Security Inc., a software security company specializing in authentication products, announced that its PKI-based offering consisting of DIGIPASS CertiID and DIGIPASS Key1 has achieved IdenTrust Compliance.
The IdenTrust Rules set governs how member banks issue and validate interoperable digital certificates. IdenTrust’s role in electronic transactions is to provide the identity network that issues and verifies the authenticity of the digital certificates used by the originator and recipient of the transaction, as well as to ensure the transaction is non-repudiable and legally-binding worldwide.
DIGIPASS CertiID is a client-based software suite using PKI-technology to sign transactions or confidential documents. It has been developed for corporations, governments and banks providing two-factor authentication for secure Web login, windows PKI login to the desktop, e-mail signature, e-mail encryption and secure VPN access. The solution being marketed for identity management, banking and e-government transactions.
DIGIPASS Key1 is an USB solution for strong authentication, secure access and secure transactions, offering the same capabilities as a smart card. The chip embedded in the DIGIPASS Key1 is FIPS140-2 level 3 and the applet signature is EAL4+ certified resulting in a highly secure data container.
The user’s private key will be generated on the chip, when the user requests a certificate for the first time. The private keys which are stored on the chip can never be exported from the device. Whenever the user wants to sign a transaction, each time a PIN-code will be requested to use the private keys on the DIGIPASS Key1.