Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

Advanced Encryption Technology (A.E.T.) Europe B.V.

Product Version Certified: 1.0.9.04
Certified for use with: Check Point Next Generation

Product Description:  The SafeSign middleware is designed to embed hardware tokens into numerous PKI systems and PKI-enabled applications in order to use a hardware token instead of software algorithms, for the crucial reasons of security and portability. Combining optimum flexibility with high usability and easy certificate enrolment, SafeSign is the answer to the demanding requirements of modern public key infrastructures.

     
Key Features and Benefits
OPSEC Integration
Additional Information		  
 
Company Description: AET is an independent Dutch company offering solutions for e-commerce and information security. These solutions are based on Public Key Infrastructure (PKI) technology using digital certificates to secure information exchanged and distributed over the Internet. AET develops middleware for digital signature smart cards and USB tokens from multiple vendors. The middleware integrates cards and USB tokens in PKI applications by supporting all major industry standards for communication interfaces. New benchmarks are set by supporting a wide range of computer operating systems, applications, card readers, tokens and Internet security standards. Other areas of expertise include the development of Digital ID management systems.
 
 
Key Features and Benefits

As more companies look towards providing remote access for their employees, many are also looking at a stronger authentication than just usernames and passwords, while seeking solutions that are easy to use. SafeSign allows you to store your digital credentials on a personal token, enhancing the security of Internet applications that support PKCS#11 and Microsoft CryptoAPI, by two-factor and digital certificates-based authentication. At the same time, its many features and benefits make SafeSign the flexible and easy-to use software in an increasingly complex world of PKI, providing the ability to use a hardware token in a wide range of applications, including secure e-mail, web authentication, etc.

SafeSign works with the STARCOS SPK 2.3 / 2.4 / 2.5 DI smart card developed by Giesecke & Devrient GmbH (G&D) and is part of the G&D product StarSign Token, with the iKey 3000 USB token from Rainbow Technologies, as well as with Java cards from multiple vendors.

Once installed and configured, use of SafeSign and the token is virtually transparent and provides users with a large number of benefits:

  • Multi-language: supporting more than 10 European languages apart from its default language English (including French, German and Spanish)
  • Multi-reader: supporting any PC/SC reader (with a current of at least 60mA), including Omnikey CardMan USB and serial readers, Class 2/3 pinpad readers
  • Multi-application: supporting a large number of PKI-enabled applications through standard API's and protocols (PKCS#11, PKCS#15)
  • Entrust dual-headed interface: supporting Entrust applications with dual-headed interface, allowing use of Entrust certificates in non-Entrust environments, e.g. in a Microsoft environment and applications
  • Multiple Operating Systems: support for Windows 2003 Server (including Terminal Services), Linux; Mac OS X, Solaris 9, Windows CE/Pocket PC 2002
  • Support of German signature standard A004
  • Flexible token management: offering profile management and configurability, providing an easy-to-use interface for both administrators and users
OPSEC Integration
SafeSign integrates seamlessly into Check Point's market-leading VPN-1®/FireWall-1® Next Generation™ SecuRemote / SecureClient, installed on client machines. While the Check Point software provides ready and trustworthy access to public information, SafeSign enables the interaction between the token and the Check Point VPN-1 SecuRemote / SecureClient application, enhancing security by allowing users to store their digital credentials on a tamper-free hardware token and simplifying logon authentication when connecting from a remote location.
Additional Information