Public Key Infrastructure Control System (K-ICP)

What to do when an equipment (computer, tablet, token, smartcard) containing a digital certificate is lost ou stolen? How to revoke the user access from the system? How to control and manage Certificate Signing Requests to CAs? If suddenly an employee leave your company, won't you be able anymore to open the encrypted files?

About the Product

K-ICP software system was developed to implement certificate management functionalities including its whole lifecycle, interacting with CAs HSMs. For instance, a Certificate Revocation List (CRL) is kept on the database for the lost keys, forbidding unauthorized accesses. Another example is the "key-escrow" technology which only with a pre-defined quorum of people is allowed (for example, directors or magistrates) is allowed to recover encrypted files for an employee or agent (or even open a VPN communication data).

What for?

Key-Escrow CRL Control (Certificate Revocation List) CSR management (Certificate Signing Request) Interface with HSMs (Hardware Security Module) Native LDAP and Active Directory

Possible Applications

Certication Authorities (CAs)
Registration Authorities (RAs)
VPNs Certificate Management Systems
Corporates PKIs
Service CAs (for SSL/TLS services)