eToken Strong Authentication for PKI: Security and
Mobility for Private Keys
Critical to the success of any Public Key Infrastructure (PKI)
implementation is the principle that each individual possesses
their own private key. This private key acts as a unique identifier
for each individual and allows them to securely access networks or
protected web sites, or digitally sign data and transactions, with
true proof of their authenticity. An effective strong
authentication and digital signature process depends how secure the
private key is kept.
Private keys generated and stored in a software environment,
such as on a PC, can be exposed and compromised. A digital
signature created with a software-based private key does not
guarantee that the signature was created by the legitimate
owner.
eToken eliminates this vulnerability by generating and storing
secure PKI keys and certificates on board a secure eToken smart
card based device. You obtain the highest level of security by
generating PKI keys and performing cryptographic operations on the
secure eToken device itself, with no exposure of the private
key.
Advantages of eToken USB smart card-based devices for
PKI
Secure Key Storage
eToken smart-card based devices contain a highly secure
microprocessor chip which enables the generation of encryption keys
and cryptographic operations on-board the device. This means the
sensitive private keys are never exposed to the insecure PC
environment and are not vulnerable to viruses, worms, trojan horses
and other common threats.
StrongTwo-factor Authentication
Users are required to connect their eToken device and
enter a password/PIN to authenticate themselves or digitally sign
data and transactions.
High Portability
Because the keys are securely stored on the eToken device, you can
use them wherever they are, whenever they need - from any computer
with a standard USB port.
Ease of Use
Users can perform PKI operations easily and intuitively, in the
same way that they use their eToken for other security
applications.
Lightest Infrastructure
eToken USB smart card authentication devices provide comprehensive
authentication and password management capabilities without
requiring any server installation or unique readers.
