Servicio de Información Comunitario sobre Investigación y Desarrollo - CORDIS

UMU-Public Key Infrastructure (UMU-PKI)

The Public Key Infrastructure with IPv6 support (UMU'PKIv6) is based on the design and later implementation of a complete and robust group of certification services for any organization type that wants to provide its clients and/or users of security mechanisms in their communications and data protection. UMU﷓ PKIv6 offers basic and advanced certification services both end users and VPN devices. By means of their services, a user will be able to carry out any operation type from his own navigator: request a certificate, renew or revoke it, look for other user certificates which wants to establish a secure communication, etc. Moreover, it allows users use of smart cards (which can be distributed by the own organization) to store cryptographic information, so that it facilitates the mobility of these.

Some of the features developed for this infrastructure are:
-·Requests of certification, renewal and revocation can be done for the users using a simple Internet browser.
-·Users can storage cryptographic information (private key, certificate and CAs certificate) in their smart cards. This allows total mobility.
-·Policy definition will establish the opportune restrictions inside an organization.
-·Cross-certification is allowed in two ways, peer-to-peer (Bridge CA) and hierarchical cross-certification.
-·It offers support to VPN devices.
-·Public repositories (DNSSEC and LDAP) are used to store users and CAs certificates and CRLs/ARLs.
-·The entities can consult to the Validation Service the online validity of the certificates using standard protocols like OCSP, SCVP or DVCS.
-·CMC can be used for the entities as a Key Management Protocol (KMP), which provides a complete certificate lifecycle management.
-·It offers services of Time Stamping (TSP).

Reported by

30003 MURCIA
Síganos en: RSS Facebook Twitter YouTube Gestionado por la Oficina de Publicaciones de la UE Arriba