News

RSA Security Helps Protect the Integrity of Electronic Transactions With New RSA Validation Solution

Tuesday 10 February 2004 00:10 CET | News

RSA Security has released its RSA Validation Solution, which is designed to instantly validate the integrity of digital certificates and ensure high levels of trust and protection for electronic communications and transactions.
The RSA Validation Solution is a standards-based, real-time status checking solution that helps to alleviate deployment and performance concerns associated with certificate revocation lists (CRL), issues that often prevent organizations from accurately assessing the validity of certificates. The RSA Validation Solution works in concert with RSA Keon Certificate Authority (CA) software, as well as other third-party certificate management solutions, including Microsoft CA. Technology has effectively transformed information exchange, replacing traditional paper trails with cyber-transactions that promise significant cost reductions, operational efficiencies and even revenue opportunity. Core to achieving these benefits is the ability to "trust" digital identities and their online transactions. As a result, more and more organizations have deployed digital certificates to establish such trust by strongly authenticating users identities, thus ensuring data integrity and accountability which are vital to enabling trusted electronic transactions. Since digital certificates -- like passports or credit cards -- can expire, be revoked or be suspended, organizations must confirm that certificates are valid before allowing transactions to occur (in the same way that merchants need to check credit cards before processing purchases). Without an efficient and reliable method of checking the status of a certificate with every transaction, the validity of the credential can be suspect. The long-standing method for checking the status of certificates is via CRLs. Using CRLs, applications depend on a list of revoked certificates delivered by an issuing CA at set intervals. Because this method is not real- time and prone to inefficiencies, invalid or rogue digital certificates may go undetected and the validity of credentials cannot always be trusted. The RSA Validation Solution, comprised of a server and client, is scalable in nature and based on industry standards, and is engineered to provide real- time status checking capabilities of thousands, even millions, of certificates. Central to RSA Securitys Secure Enterprise Access solution suite, the RSA Validation Solution is designed to resolve certificate revocation list challenges through enhanced security and ease of deployment and administration, as well as high reliability and performance. The RSA Validation Manager is the server that enables real-time certificate validation utilizing Online Certificate Status Protocol (OCSP), an IETF standard. The server provides a centralized aggregate of CRLs published by certificate authorities in a continuous, real-time environment -- thereby helping to eliminate the threat of security breaches from invalid certificates. The RSA Validation Manager is a highly scalable, status- checking solution that interoperates with RSA Keon CA software and a number of third-party certificate authority solutions, including Microsoft CA and VeriSign. The RSA Validation Client is a Microsoft CAPI-compliant certificate revocation status-checking provider. The RSA Validation Client provides native status checking for Microsoft and other third-party applications using Microsoft CAPI such as e-mail clients, web browsers and web servers. The RSA Validation Client offers an easy to deploy migration path from CRL to real- time certificate validation by enabling mixed environments in which both CRL and real-time validation co-exist. The RSA Validation Client has been designed to interoperate with third party OCSP servers in addition to the RSA Validation Manager solution. Availability & Pricing RSA Validation Solution software is currently available. The solution is priced on a per user basis. The RSA Validation Manager and RSA Validation Client solutions are available as separate components or as a bundled offering.

Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: ,
Categories: Payments & Commerce | Payments General
Countries: World
This article is part of category

Payments & Commerce