RSA Digital Certificate Solutions RSA Solutions for PKI

RSA Digital Certificate Solutions RSA Solutions for PKI David Mateju RSA Sales Consultant david. mateju@rsa. com

RSA – The Big Picture Encryption Store, Transport IT infrastructure Access Authentication, Authorization, Anti-fraud Solutions information SIEM Security Information and Event Management DLP Data Loss Prevention

RSA – The Big Picture RSA Encryption and Key Management Suite RSA Access Manager RSA Federated Identity Manager IT infrastructure RSA Secur. ID RSA Digital Certificate Solutions information RSA Identity Protection and Verification Suite RSA en. Vision Platform RSA Data Loss Prevention Suite

RSA Digital Certificate Solutions RSA Registration Manager RSA Certificate Manager User RSA Validation Client Web Server RSA Validation Manager

RSA Certificate Manager Industry leading certificate authority • • • Scalability RSA One. Step automated enrollment Native support for secure e-mail & VPN Certifications • • First CA to be Common Criteria EAL 4+ certified Iden. Trust Interoperability • • Over 100 applications tested RSA BSAFE Cert J/C enables thousands more Web browser, smart card/USB token credential storage options

RSA Registration Manager Streamline enrollment process • Offloads potential enrollment bottlenecks from CA • Verifies credentials of certificate request RA Deploy distributed Registration Authorities (RA) • Allows placement of policy-driven RAs at remote customer or partner sites Increase security • Reduce risk of approving certificates for unauthorized parties • Secure remote web-based administration RA RSA Certificate Manager RA

RSA Validation Manager Web Applications Certificate Authorities (RSA or other) RSA Validation Manager LDAP Directory CRLs Fetch CRLs LDAP Directory Check Status of specific certificate with OCSP CRLs OCSP Synchronization Status RSA Validation Manager Third Party OCSP

RSA Validation Manager / Client Industry standards-based OCSP server • RFC 2560, OCSP, X. 509 v 3 certificates, X 509 v 2 CRLs, delta CRLs, Authority Revocation Lists (ARLs), LDAP , https Immediately validate digital certificates • • • Ensures high levels of trust and assurance of transactions Provides a more reliable verification process than CRLs Instantly revokes suspended certificates Achieve high performance • • • Resolves CRL performance and scalability issues Integrates real-time status checking into Microsoft® Windows® applications Interoperates with third-party Certificate Authorities Increase security • • Reduces the risk of security breaches resulting from invalid certificates Increases accountability and protection through audit trails

RSA BSAFE Libraries (C/C++, Java) Libraries usable by C/C++ or Java software application developers High-performance, scalable, and standards-based: • • cryptography (Crypto-C/J, Crypto-C ME) certificate handling, digital signature (Cert-C/J, Cert-C ME) secure network transport (SSL-C/J, SSL-C ME) Web Services security (Secure Web Services) Helps you meet the regulatory and data privacy requirements of your customers Available on a wide range of platforms to easily adapt to your heterogeneous environment, including mainframe platforms