Translated by

JaCarta

Product
Developers: Aladdin R.D.
Date of the premiere of the system: 2013/12/06
Last Release Date: 2019/11/28
Technology: Cybersecurity - Authentication,  cybersecurity - Biometric identification

Content

JaCarta is a product line for authentication and identification of Aladdin R.D. company.

USB tokens and smart cards of a line of JaCarta are held for use as the certified means of the strengthened qualified electronic signature, means of safe storage of keys and digital certificates and also a full-fledged CIPF in electronic document management systems, remote banking for ensuring the legal importance and a neotkazuyemost of actions of users and also integrity and confidentiality of transmitted data.

2019

Compatibility with software Kriptoarm

On December 5, 2019 the Aladdin R.D. company reported that together with "Digital technologies" tests on compatibility of the products completed.

According to the certificate of compatibility signed based on testing the correctness of work of electronic keys of JaCarta with the software of Kriptoarm Standart Plus of version 5.4.3 was confirmed above. Read more here.

Compatibility with the hardware and software system Dionis-NX

On November 28, 2019 the company "Aladdin R.D." reported that together with scientifically- manufacturing enterprise "Factor CU" tests on compatibility of the products completed.

Within testing specialists of the companies confirmed correctness of joint work of electronic keys of JaCarta with version 2.0 hardware and software system "Dionis-NX", the module of key generation of MSC and the DioPost e-mail client of version 6. Read more here.

Vyzod of release of the Uniform Client of JaCarta PC of version 2.12.2

On November 28, 2019 the Aladdin R.D. company announced an exit of release of the Uniform Client of JaCarta PC of version 2.12.2.

"The uniform Client of JaCarta" is the software package intended for support of functions of strict two-factor authentication, setup and work with models of USB tokens and smart cards of the JaCarta and eToken families.

To version 2.12.2 razrabochik of Aladdin R.D. added support operating systems of families Linux and macOS, Crypto Pro JCP 2.0, drivers of the virtual reader of smart cards JaCarta Virtual Reader and smart cards of the reader VipNet Client of JCR721, 4.5.1 and 4.5.2 and also is implemented a possibility of the two-factor authentications user by the certificate on an USB token or a smart card of JaCarta PKI at login for Astra Linux SE Smolensk OS 1.5 (64 bits) and Astra Linux of SE 1.6 "Smolensk" (64 bits).

In the current release "the Uniform Client of JaCarta" is also updated the automated workplace UTs component for generation of requests for the certificate, online and offline modes of work with Crypto Pro of UTs 2.0, support of an unblocking of tokens of JaCarta-2 GOST using the special line received from a security administrator and shutdowns of notifications on the expired certificates is added.

Besides, there was an augmented list of the supported USB devices (VID/PID), the information storage method in the file system of a token JaCarta LT is optimized, stability of work is increased and the vulnerabilities revealed using the static analyzer of the source code are eliminated.

Adding in the Citrix Ready Marketplace directory

On November 26, 2019 the Aladdin R.D. company announced completion of testing for compatibility and obtaining the official status Citrix Ready for a product family of JaCarta and JCR. JaCarta smart card USB tokens and also smart cards the reader of JCR721 of development of Aladdin R.D. are presented in the Citrix Ready Marketplace directory now. Read more here.

Confirmation of a possibility of use in the Personal Account of Customs card

On October 24, 2019 the Aladdin R.D. company reported that together with Tamozhennaya Karta LLC, the operator of customs payments in Russia, updated the certificate of compatibility.

Specialists of the companies carried out tests which results confirm a possibility of use in the Personal Account of Customs card payment system not only USB tokens and smart cards of JaCarta of GOST, JaCarta PKI/GOST, JaCarta PRO/GOST and JaCarta PKI/BIO/GOST, but also the second generation of electronic keys of JaCarta-2 GOST, JaCarta-2 PKI/GOST, JaCarta-2 PRO/GOST and JaCarta-2 PKI/BIO/GOST.

Testing was held using the application for strict authentication and the electronic signature for Web applications and cloud services of JC-WebClient which was also updated to version 4.2.

During tests the compatibility was confirmed for operating systems Windows 7 Windows 8 Windows 8.1 Windows 10, MacOS CentOS Debian 10.9 - 10.14, 7, 9.5, openSUSE Red Hat Ubuntu to Leap 42.3, openSUSE 13.2, Enterprise 7.2, 18.04, Ubuntu 16.04 and Ubuntu 14.04.

Compatibility about Case (EOS Group), AIK Supervision and eDocLib

On October 16, 2019 the company "Aladdin R.D. reported what together with EOS Group was completed by tests on compatibility of the products.

Based on testing certificates according to which an electronic document management system "CASE", the automated information SUPERVISION complex and a corporate content management system of "eDocLib" developed by EOS Group are compatible to the USB tokens and smart cards of JaCarta PKI/GOST and JaCarta-2 PKI/GOST made by Aladdin R.D. were signed.

Tests were carried out in operating systems Windows 7 (32/64-bit), Windows 8 (32/64-bit), Windows 8.1 (32/64-bit), Windows 10 (32/64-bit) Viola of 8 joint ventures, Viola Workstation 8 OS lotus, RED OS 7.1 and RED OS 7.2 with support software "the Uniform Client of JaCarta" of version 2.12 or above.

Besides, during testing the working capacity and correctness of joint functioning of a complex of data protection on the server from unauthorized access, copying, damage, theft or illegal withdrawal of "Secret Disk Server NG" and an electronic document management system of EDMS "DELO" was confirmed.

Compatibility with IVK Bureaucrat keys

On October 11, 2019 the Aladdin R.D. company reported that together with JSC IVK signed certificates of compatibility of products. Read more here.

Compatibility with Dallas Lock 8.0

On September 26, 2019 the Aladdin R.D. company reported that together with Confidant compatibility and correctnesses of work of electronic keys of a line of JaCarta and an information security system of laid on type for autonomous and network automated workplaces "Dallas Lock 8.0" of editions "K" and "C" successfully tested, including protective modules NSD, SKN, ME and SOV.

Based on tests of the company prepared the certificate of compatibility. According to the certificate, the information security facility Dallas Lock 8.0 it is compatible to the following USB tokens and smart cards of Aladdin R.D. company - JaCarta PKI, JaCarta PKI/BIO, JaCarta of GOST, JaCarta PKI/GOST, JaCarta SF/GOST, JaCarta-2 GOST, JaCarta-2 SE, JaCarta-2 PKI/GOST, JaCarta-2 PRO/GOST, JaCarta PRO, JaCarta LT. At the same time JaCarta PKI/BIO devices are supported as means of authentication without use of biometric identification, and JaCarta SF/GOST, JaCarta-2 GOST, JaCarta-2 SE, JaCarta-2 PKI/GOST, JaCarta-2 PRO/GOST, JaCarta PRO, JaCarta LT – as means of authentication in assemblies of 6HH or above.

Testing was held in the most widespread versions of operating systems of Windows – from Windows Server 2003 to Windows 10.

Compatibility with InfoWatch Traffic Monitor

On August 22, 2019 InfoWatch and Aladdin R.D., announced completion of tests on compatibility of the products InfoWatch Traffic Monitor and JaCarta SF/GOST. The working capacity and correctness of cross-functioning of the InfoWatch Traffic Monitor DLP system and the protected office information medium JaCarta SF/GOST are confirmed with the relevant protocol of August 15, 2019. Read more here.

Compatibility with "DiState: Organizer of e-document flow", "DiState: Operator of e-document flow v.3.0" and "DiState: Document flow"

On August 13, 2019 the Aladdin R.D. company announced the tests which are carried out with "Disteyt" on compatibility of the products. Within testing specialists of the companies confirmed correctness of work of electronic keys of a line of JaCarta with the software "to DiState: Organizer of e-document flow", "DiState: Operator of e-document flow v.3.0" and "DiState: Document flow". Software solutions of DiState allow clients to organize own platform of legally significant document flow without costs for development of IT architecture. All software products of DiState can be integrated seamlessly with corporate portals and information systems and also exchange documents with other operators an e-document flow SKID.

According to the certificates signed by the companies based on tests with the above-stated software at application of a CIPF of CRYPTOPRO CSP of version 4.0 or above, Crypto Pro of the EDS of Browser plug-in of version 2.0 or above and the module of support of key carriers of version 3.6.408 or above USB tokens and smart cards of JaCarta of GOST, JaCarta-2 GOST, JaCarta PKI, JaCarta PKI/GOST, JaCarta-2 PKI/GOST, JaCarta PKI/BIO, JaCarta-2 PKI/BIO/GOST, JaCarta PRO, JaCarta LT are compatible.

Testing was held in operating systems Windows 7 (32/64-bit), Windows 8 (32/64-bit), Windows 8.1 (32/64-bit) and Windows 10 (32/64-bit).

Compatibility with the solutions Transcript, Declaration.Online, Taksnet-Referent and Криптекс

On August 9, 2019 the Aladdin R.D. company, the Russian developer and solution provider for information security support reported that together with Taksnet, the developer of electronic document management systems and services for submission of reports, tests on compatibility of the products completed.

The certificates signed based on testing confirm working capacity and correctness of joint functioning of electronic keys of JaCarta with an electronic document management system"Transcript", the software product for submission of reports "Taksnet-Referent", service for submission of reports "Declaration. Online" and the program for formation electronic signature "Kripteks".

In the Transcript system and the program for formation of the electronic signature "Kripteks" the hardware cryptography of JaCarta-2 GOST is supported. It allows to provide the raised security level as the private key does not leave the device.

Users at application of any compatible version of a CIPF of CryptoPro CSP with the Taksnet-Referent software product and service declaration.online can work with electronic keys and smart cards of JaCarta PKI, JaCarta PRO, JaCarta LT, JaCarta of GOST, JaCarta-2 GOST, JaCarta-2 PKI/GOST and JaCarta-2 PRO/GOST.

Compatibility with RED OS 7.2 MOORE

On August 8, 2019 the company RedSoft reported that together with Aladdin R. D signed the certificate of compatibility of software products USB- tokens and smart cards JaCarta and operating system RED OS 7.2 MOORE. In more detail here.

Compatibility with CryptoPro CSP of versions 4.0 R3, 4.0 R4 and 5.0.

On July 30, 2019 the Aladdin R. D company reported that together with Krypto-PRO held testing for compatibility of the latests version of the software products. Read more here.

Compatibility with operating systems of the Viola family

On July 23, 2019 Aladdin R.D. and BaseALT announced successful testing of electronic keys and smart cards of JaCarta of production of Aladdin R.D. and operating systems of the Viola family of production of BaseALT.

In a work progress the following models were checked: JaCarta PKI, JaCarta-2 GOST, JaCarta-2 PKI/GOST in form factors of an USB token and a smart card. Full compatibility and correctness of work of the specified electronic keys and smart cards with operating systems of the Viola family is confirmed.

JaCarta is USB tokens, smart cards and modules of security for ensuring secure access in information systems, works with the electronic signature (ES) and safe storage of user data.

Viola Education 8, the Viola Workstation 8, the Viola the K 8 Workstation, the Viola Server 8, the Viola of 8 joint ventures – the functional, protected and available operating systems with the Russian interface for workstations and servers using which it is possible to perform as fast deployment of network for providing infrastructure of the enterprise, and installation on the personal computer.

Compatibility with CryptoPro CSP

On July 5, 2019 reported to Aladdin R.D. company what together with Krypto-PRO was completed by tests on compatibility of the products. Read more here.

Inspection control of products of lines of JaCarta-2 and JaCarta-3

The Aladdin R.D. company, announced on June 20, 2019 completion of the procedure of inspection control of the certified products "Hardware Platform of JaCarta-2" and "Hardware Platform of JaCarta-3".

Within inspection control stability of parameters of the turned-out certified products and lack of discrepancies in the course of its production are confirmed, and additional tests of control samples of the products "Hardware Platform of JaCarta-2" and "Hardware Platform of JaCarta-3" showed their full compliance to the stated characteristics.

Based on inspection control of products by the certification body "Radio physical Test Technologies" (The certificate of accreditation No. RA.RU.11ML04) confirms action of certificates of conformity of ROSS RU.ML04.N01164 of 11/8/2017 and ROSS RU.ML04.N01165 of 11/8/2017.

Compatibility with Docsvision

On June 20, 2019 the companies Aladdin R.D. and "DocsVision" signed certificates of compatibility of the products. Within cooperation of the companies were tested, the confirmed working capacity and correctness of joint functioning of electronic keys of JaCarta and electronic document management systems Docsvision version 5.5. In more detail here.

Compatibility with OS ROSA

On June 03, 2019 the company"Aladdin R.D.", Russian the developer and the supplier of means authentications, products and solutions for providing information security and protection confidential data, reported that they together with STC IT Rosa, the developer of the system SOFTWARE, including meeting the requirements Russian legislation in the area data protection, signed certificates of compatibility of the products.

Results of tests confirm correctness of work of products of the line of JaCarta with operating systems the ROSA family serving for confidential information protection, including personal data, in commercial structures, public authorities and on industrial enterprises. According to signed certificates, in to the operating system ROSA "COBALT" for the procedure of creation electronic signature can be used USB- tokens and smart cards of JaCarta PKI, JaCarta-2 GOST and JaCarta-2 PKI/GOST. Smart cards were tested using smart cards of readers of a line ASEDrive.

Products of the line of JaCarta are intended for:

  • the organizations of the strengthened or strict authentication in information systems and services;
  • ensuring the legal importance of documents and actions of users using the electronic signature;
  • safe storage of containers of program CIPFs, user data, certificates, passwords, etc.

The confirmed correctness of work of USB tokens and smart cards of JaCarta in the environment of ROSA OS for users opens access to a set of information systems and services where strict authentication and use of the electronic signature is required. Their number includes electronic document management systems, electronic marketplaces, the systems of remote banking, the system of customs declaring or submission of reports, mobile and Web applications, corporate portals and cloud services.

Compatibility with the Lotus OS

On April 17, 2019 Aladdin R.D., the Russian developer and solution provider for information security support reported what together with Enstrim, providing a full range of services in creation and maintenance of corporate information systems, was carried out by tests on compatibility of the products.

According to the results of testing of the company signed the certificate of compatibility which confirms correctness of work of electronic keys and smart cards of JaCarta with operating system Lotus.

According to the document, in the Lotus operating system for the procedure of creation of the electronic signature USB keys and smart cards of JaCarta-2 GOST and JaCarta-2 PKI/GOST can be used.

The Lotus operating system includes four editions for servers, workstations, terminal stations, self-service terminals. Maintains architecture: x64, x86, MIPS, ARM also offers:

  • for the user: usual interface, predictable system behavior, native applications launch of Win32, work with corporate mail, address directory, calendar, general network resources;
  • for the administrator instruments of administration: support group the politician, both in domain Active Directory, and in own implementation of a directory service - Lotos Directory existence of the graphic administration console; simple instruments of migration from the inherited systems, support popular the information security facility and CIPF.

Compatibility with iBank2

On March 5, 2019 Aladdin R.D., the Russian developer and solution provider for information security support, reported that together with JSC BEFIT - developer of solutions for remote banking, tests on compatibility of the products carried out. Read more here.

JaCarta-2 SDK 2.4.1

On February 19, 2019 the Aladdin R.D. company, the Russian developer and solution provider for information security support, announced a release of the next version of a developer kit of JaCarta-2 SDK 2.4.1.

The developer kit of JaCarta-2 SDK is intended for embedding of JaCarta-2 GOST devices and the combined models on their basis and also "Antifraud terminal", in the application software. Program components, including library of the PKCS#11 standard and an administrative tool, examples of source codes of programs for work with PKCS#11, documentation for embedding of devices using different applied interfaces and certified materials for acquaintance are its part. The set is registered in the register of the Russian computer programs and a DB (No. 4299).

In the provided version of a developer kit jcpkcs11-2 library to version 2.4.1.14 was updated, namely such options as are added:

  • support of work CMS with a key of 256 bits, according to the recommendations algorithms cryptographic of TK-26 "Use of GOST 28147-89, GOST P 34.11-2012 and GOST P 34.10-2012 in Messages of the CMS Format":
  • algorithms of approval of keys;
  • algorithms of transfer of keys.
  • possibility of creation of the CMS message to several subscribers and analysis of the CMS message prepared to several subscribers;
  • SafeTouch PRO support;
  • support of creation and verification of the EDS for previously calculated a hash value;
  • support of development of a key of pair communication with the explicit indication of a key of the correspondent;
  • possibility of query design on rerelease of the certificate.

Besides, specialists of Aladdin R.D. updated versions of the CIPF components "Kriptotoken of 2 EDS" and the automated workplace of the JaCarta-2 GOST developer, certified documents and also added additional examples with support of GOST 2012.

Beta of the Uniform Client of JaCarta PC 2.12.0

On February 12, 2019 the Aladdin R.D. company announced a release of the beta of software package "Uniform Client of JaCarta" 2.12.0.

According to the company, "the Uniform Client of JaCarta" — the software package intended for work with all models of USB tokens and smart cards of a line of JaCarta. Using it it is possible to set or change the PIN code, to unblock the device, to format, obtain the complete information (the name, model, serial number, etc.), to browse, import or export the objects stored in the device, for example, certificates and to perform other servicing functions.

Advantages of the Uniform Client of JaCarta PC are support in one device interface with the Russian and foreign cryptography, work with popular cryptoproviders, support of work with the combined USB tokens and smart cards, for example, of JaCarta-2 PKI/GOST and also simultaneous operation with devices of lines JaCarta and eToken.

Main differences of the beta of the Uniform Client of JaCarta 2.12.0:

  • formation of requests for release of certificates in accordance with GOST P 34.10-2012;
  • correct identification of tokens of JaCarta SF/GOST;
  • support online and offline - works with Crypto Pro of UTs 2.0;
  • the module of support of Crypto Pro of JCP 2.0 is built-in;
  • option of copying of certificates of the user in local storage it is possible to configure during installation "The uniform client" now, and not just in the interface of a software package;
  • stability of the version is increased and work regarding use of resources of the processor is optimized.

Compatibility with Promed

On February 5, 2019 Aladdin R.D. company, the Russian developer and solution provider for information security support (cybersecurity), and SVAN group, the domestic developer and integrator of the information solutions for health care constructed on cloud computing announced completion of tests on compatibility of the products. Read more here.

Compatibility with Astra Linux Special Edition and Common Edition

On January 30, 2019 the company"Aladdin R.D.", Russian the developer and solution provider for providing information security, reported that together with the company ASTRALINUX tests on compatibility of the products — USB- tokens and smart cards a line of JaCarta with operating systems carried out (OS) Astra Linux Special Edition and Astra Linux Common Edition.

Based on testing of the company signed the certificates of compatibility confirming working capacity and correctness of joint functioning of USB tokens and smart cards of a line of JaCarta with special purpose OS ASTRALINUX Special Edition release Smolensk of version 1.5. and 1.6. and also with OS of general purpose ASTRALINUX Common Edition release Oryol of version 2.12. According to the document, when using jcPKCS11-2 library of version 2.4 or is higher with the listed operating systems for authentication and formation of the electronic signature USB tokens and smart cards of JaCarta-2 GOST and JaCarta-2 PKI/GOST can be used, and as the protected office carrier it is necessary to use the JaCarta SF/GOST model.

2018

Compatibility with Red OS 7.1 Moore

On October 29, 2018 RED SOFT reported that they together with Aladdin R.D. signed the certificate of compatibility of the products. Read more here.

Compatibility with Blockhost-MDZ, Blokhost-network and Litoria Desktop

On October 25, 2018 Aladdin R.D. company, the Russian developer and solution provider for information security support, reported that together with Gazinformservice, one of system integrators in the field of security and the developer of information security tools, tests on compatibility of the products completed.

Within testing the correctness of work of USB keys and smart cards of JaCarta with a hardware and software system of a trusted boot "BLOCKHOST-MDZ", an information security product from unauthorized access by "BLOKHOST-SET 2.0" and a software package for adding, assurance, verification of the electronic signature (ES) and also a shifrovaniyaa of extraction of the files "Litoria Desktop 2" was checked.

The certificates signed by the companies based on tests confirm compatibility of an information security product of "BLOKHOST-SET 2.0" with smart cards of JaCarta PRO and JaCarta LT and also smart cards and electronic keys of JaCarta-2 GOST, JaCarta PKI and JaCarta GOST. The correctness of work of the software package Litoria Desktop 2 is confirmed for smart cards of JaCarta PRO and JaCarta LT and smart cards and electronic keys of the GOST, JaCarta PKI/GOST models JaCarta PKI, JaCarta.

According to documents, for implementation of the BLOCKHOST-MDZ HSS functions of enciphering of system hard drive partition and authentication of users before loading of the operating system loaded in the UEFI mode the JaCarta PKI/GOST USB keys can be used. For enciphering of the user hard drive partition smart cards and electronic keys of JaCartа-2 GOST, JaCartа-2 PKI/GOST, JaCarta PKI, JaCarta GOST, JaCarta PKI/GOST and a smart card of JaCarta PRO and JaCarta LT can be used.

Testing was held in operating systems Windows Server 2008R2 Windows Server 2012, Windows Server 2012R2 Windows Server 2016 Windows Vista Windows 7 Windows 8 Windows 8.1 Windows 10.

Compatibility with iSimpleBank 2.0

On July 9, 2018 it became known that the companies "Aladdin R.D." and "Aysimpllab" signed the certificate confirming compatibility of the products.

USB token and smart card of JaCarta
USB token and smart card of JaCarta

According to the document, USB tokens and smart cards of JaCarta can be used during the work in the system of remote banking iSimpleBank 2.0 for secure access of users and confirmation of the legal importance of their actions. When checking compatibility of products of Aladdin R.D. with the RBS system "Aysimpllab" the JC-WebClient 4.0 application was used.

Within tests the working capacity and correctness of joint functioning of the RBS system of iSimpleBank 2.0 and USB tokens and smart cards of JaCarta-2 GOST, JaCarta-2 PKI/GOST, JaCarta-2 PRO/GOST, JaCarta GOST, JaCarta PKI/GOST and JaCarta PRO/GOST was confirmed. Testing was held in operating systems Microsoft Windows 7 - 10 Microsoft Windows Vista, Microsoft Windows XP, Apple macOS CentOS 10.9 - 10.13, 7 (64-bit), Debian 8.4 (32/64-bit), openSUSE 13.2 (64-bit), by openSUSE Leap 42.1 (64-bit), Ubuntu 14.04 (32/64-bit), Ubuntu 16.04 (64-bit) and Red Hat 7.2 (64-bit).

Compatibility of JaCarta and INIST Bank Client system

On June 28, 2018 the Aladdin R.D. company announced completion of tests on compatibility of the product JaCarta and the INIST Bank Client system. Results of testing confirm that JaCarta line devices, including USB tokens, JaCarta-2 GOST smart cards, provide secure access of users of the INIST Bank Client system and confirm the legal importance of their actions. For work of two products it is necessary to use software "the Uniform Client of JaCarta" of version 2.11 or above.

JaCarta-2 GOST
JaCarta-2 GOST

The certificate of compatibility signed by the companies according to the results of checks confirms operability of USB tokens and smart cards of JaCarta of GOST, JaCarta PKI/GOST, JaCarta PRO/GOST, JaCarta PKI/BIO/GOST, JaCarta-2 GOST, JaCarta-2 PKI/GOST, JaCarta-2 PRO/GOST and JaCarta-2 PKI/BIO/GOST and also USB tokens of JaCarta GOST/Flash and JaCarta PKI/GOST/Flash * with the software package "INIST Bank Client" during the work in operating systems Microsoft Windows XP (32/64-bit), Microsoft Windows Vista (32/64-bit), to Microsoft Windows 7 (32/64-bit), Microsoft Windows 8 (32/64-bit), Microsoft Windows 8.1 (32/64-bit), Microsoft Windows 10 (32/64-bit) and Apple macOS 10.9 — 10.13. JaCarta-2 GOST is generation of devices with hardware implementation of cryptographic algorithms GOST P 34.10-2012 and GOST P 34.11-2012.

Devices can be used to providing strict two - or three-factor authentication (with identification on a fingerprint), formations and verifications of the strengthened qualified electronic signature and also safe storage of the user objects and data (digital certificates, passwords, etc.). Devices are certified by FSB of Russia as digital signature facilities (certificate No. Federation Council/124-3112).

Release of JaCarta-2 for the Unified State Automated Information System

The Aladdin R.D. company announced on June 21, 2018 the beginning of official deliveries of USB tokens of JaCarta-2 SE intended for work with the electronic signature (ES) and strict two-factor authentication of users in the Unified State Automated Information System and other state specialized systems.

JaCarta-2 SE devices are developed on the hardware-software platform of the next generation, support the Russian cryptoalgorithms of GOST P 34.10-2012 and GOST P 34.11-2012 for formation of the strengthened qualified EDS and foreign cryptoalgorithms for strict two-factor authentication of users. For ensuring compatibility with the existing systems and soft junction on use of the Russian standard of the electronic signature JaCarta-2 SE supports also old Russian cryptoalgorithms of GOST P 34.11-94 and GOST P 34.10-2001, told in the company.

In the next generation of USB tokens the functionality providing the additional PIN code for transaction of the electronic signature allowing to reduce the probability of wrong actions of users is implemented. The amount of the protected non-volatile memory (EEPROM) available to storage of keys, codes of authorization, certificates and other objects increased to 114 Kb. Devices have the raised resource by quantity of write cycles in EEPROM memory and the executed transactions EDS (not less than 10 million).

USB tokens of JaCarta-2 SE have full backward compatibility with the JaCarta SE model and completely conform to technical requirements to the external cryptographic USB device (a hardware cryptokey) used within functioning of the Unified State Automated Information System specified in Aladdin R.D.

Inspection control in FSTEC

On May 31, 2018 the company Aladdin R.D. announced that the software package (SP) JaCarta 1.5 including the Uniform Client of JaCarta PC and devices of a product line JaCarta underwent inspection control in FSTEC Russia. The validity of the certificate was extended till September 7, 2021.

The FSTEC certificate of Russia No. 3449 certifies that the JaCarta PC of version 1.5 is the software tool of protection against unauthorized access to information which is not containing the data which are the state secret, implementing authentication functions including in the environment of virtualization, and access control, and conforms to requirements for the 4th level of absence control of not declared opportunities (NDV 4) and requirements of specifications. It allows to use the JaCarta 1.5 PC in personal data information systems to 1 level of security inclusive and during creation of automated information systems to a class of security 1G inclusive.

According to the Order of the Ministry of Telecom and Mass Communications of the Russian Federation No. 136 of 3/28/2018, the software package of authentication and safe information storage of users of JaCarta of version 1.5 was entered in the Unified register of the Russian programs for electronic computers and databases. The products entered in the Register have advantage with participation in the tenders held by government institutions and the enterprises and help to execute the import substitution program of foreign developments by domestic analogs.

Compatibility with the products JaCarta

The company Infotecs and the company Aladdin R.D. — the Russian developers of products and solutions in the area information security — in February, 2018 completed tests of the developments for compatibility: USB- tokens and smart cards of a line of JaCarta with means cryptographic data protection (CIPF) ViPNet CSP 4.2. In more detail here.

Compatibility with the solution "Guard of NT"

The companies Aladdin R.D. and "RUBINTEH", the Russian developers of products and solutions for providing information security, in January, 2018 completed tests of the products on compatibility.

According to the results of tests the correctness of joint work of an information security product from unauthorized access (the information security facility from NSD) the Guard of NT of version 4.0 and USB tokens and smart cards of JaCarta PKI and also digital signature facilities (EDS) of JaCarta-2 GOST was confirmed. Smart cards were tested using smart cards of readers of ASEDrive III.

The Guard of NT 4.0 supports by the information security facility from NSD work with the following models of USB tokens and smart cards of JaCarta *: JaCarta 2 GOST, JaCarta 2 PKI/GOST, JaCarta 2 PKI/BIO/GOST, JaCarta 2 PRO/GOST, JaCarta PKI, JaCarta-PKI/BIO, JaCarta PKI/GOST, JaCarta PKI/Flash and JaCarta PKI/GOST/Flash. The listed devices are used as personal identifiers of users and administrators of Guards of NT 4.0.

JaCarta-2 GOST is the next generation of USB tokens and smart cards for formation and verification of the strengthened qualified EDS, providing strict two - or three-factor authentications and also safe storage of the user objects and data (digital certificates, passwords, etc.). Devices are certified FSB Russia as means of the EDS of class KC1 and KC2 and cryptographic an information security product of class KC1 and KC2 (certificate of conformity No. Federation Council/124-3112).

In turn, the Guard of NT — information security facility from the VAT, intended for a comprehensive protection of information resources from unauthorized access during the work in one - and multi-user automated systems, in the state information systems and also in personal data information systems. FSTEC of Russia on compliance of RD of computer engineering means on the 3rd class of security and RD NDV on the 2nd level of absence control of not declared opportunities is certified.

  • — for all combined models support only is provided to functionality of PKI and GOST (means of the EDS "Kriptotoken of 2 EDS" for JaCarta-2 line devices).

2017

Release of the Uniform Client of JaCarta PC of version 2.11

The Aladdin R.D. company announced on December 26, 2017 next an exit versions (2.11) software S (SS) "Uniform Client of JaCarta" for setup of USB tokens and smart cards of JaCarta, including JaCarta-2 GOST line devices, and eToken.

The Uniform Client of JaCarta PC integrates in itself all necessary tools for setup and work with USB tokens and smart cards of the JaCarta family and also eToken devices, including eToken GOST, eToken PRO (Java) and eToken Anywhere. Using the Uniform Client of JaCarta PC it is possible to set or change quickly and easily the PIN code, to unblock the device, to initialize it with the set settings, to obtain the complete information (the name, model, serial number, etc.), to browse, import or export the objects stored in the device, for example, certificates and to perform other servicing functions.

Features of the Uniform Client of JaCarta PC are support in one device interface with the Russian and foreign cryptography, work with popular cryptoproviders, for example, of CryptoPro CSP, support of work with the combined USB tokens and smart cards, for example, JaCarta-2 PKI/GOST and also simultaneous operation with devices of lines JaCarta and eToken.

Possibilities of the Uniform Client of JaCarta PC can be expanded at activation of the paid option JaCarta SecurLogon allowing to perform quickly transition from one-factor authentication using pair the login/password to the strengthened two-factor authentication using USB tokens and smart cards of JaCarta. At the same time it is not obligatory to develop a public key infrastructure (PKI) or the Active Directory — in devices the difficult password used in authentication process in an information system at the time of presentation of USB - tokena/smart - the card and input of the PIN code of the user registers. Further devices it is possible to store the digital certificate of the user and the corresponding private key, having provided transition, fast and imperceptible for users, from the strengthened authentication to strict two-factor authentication with PKI.

Main differences of version 2.11:

  • support of JaCarta-2 GOST (including the combined models) — the next generation of USB tokens and smart cards with hardware implementation of cryptographic algorithms GOST P 34.10-2012 and GOST P 34.11-2012 for work with the strengthened qualified electronic signature and strict two-factor authentication;
  • support of USB tokens and smart cards of JaCarta PRO — the certified devices for strict two-factor authentication on the basis of foreign cryptoalgorithms and compatible to infrastructure for eToken PRO (Java);
  • support of tokens of eToken PRO (Java) 72K (including eToken Anywhere) without the need for installation of the additional software;
  • to structure of a distribution kit it is added JaCarta software the automated workplace UTs, allowing to create requests to Certification center for obtaining the certificate of public key and to store the received certificates of USB tokens and smart cards of JaCarta of GOST or eToken GOST. At the same time private keys of users are generated in devices and never leave them.

Distribution kit Uniform Client of JaCarta PC 2.11 is available to downloading on the official site of Aladdin R.D. company in the section Center of loading.

JaCarta-2 GOST has resistance to external influences

On December 14, 2017 the Aladdin R.D. company reported that the hardware platform of JaCarta-2 GOST devices and the combined models on their basis saves working capacity at influence of high and low temperatures, is protected from dust and moisture and also is steady against vibrations and falling.

JaCarta-2 GOST (2017)
JaCarta-2 GOST (2017)

Is confirmed by the certificate of Federal Agency for Technical Regulation of Metrology that the hardware platform of JaCarta-2 GOST devices has resistance to the external climatic factors influencing at operation, storage and transportation and saves working capacity in the temperature range from minus 40 °C to plus 85 °C. The body of devices guarantees protection against penetration of dust and at long immersion in water (IP57 in accordance with GOST 14254-2015). Besides, the body provides resistance of devices to impact of vibration, and its construction and mechanical durability do not create dangers to the person even at possible careless handling.

JaCarta-2 GOST is generation of an UBS tokens, smart cards and modules of security (SIM, chips for installation on printed circuit boards) with hardware implementation of cryptographic algorithms GOST P 34.10-2012 and GOST P 34.11-2012. These devices can be used to formation and verification of the strengthened qualified electronic signature, strict two - or three-factor authentication, ensuring integrity and confidentiality of transmitted data using enciphering and the message authentication code in accordance with GOST 28147 89 and also safe storage of the user objects and data (digital certificates, passwords, etc.) in the protected non-volatile memory.

Inspection control in FSTEC of Russia

The company"Aladdin R.D.", the Russian developer and solution provider for providing information security, announced on December 8, 2017 that the software package (SP) JaCarta 1.5 including the Uniform Client of JaCarta PC and JaCarta devices underwent inspection control in FSTEC Russia.

The main changes in the JaCarta PC 1.5 steels inclusion in its structure of the certified means electronic signature of JaCarta-2 GOST, JaCarta PRO devices which can be used in infrastructure for eToken PRO (Java), also add a page opportunity for work operating system Microsoft Windows 10.

In general the FSTEC certificate of Russia No. 3449 certifies that the JaCarta PC of version 1.5 is the software tool of protection against unauthorized access to information which is not containing the data which are the state secret, implementing authentication functions including in the environment of virtualization, and access control, and conforms to requirements for the 4th level of absence control of not declared opportunities (NDV 4) and requirements of specifications. It allows to use the JaCarta 1.5 PC in personal data information systems to 1 level of security inclusive and during creation of automated information systems to a class of security 1G inclusive.

The issued certificate works till September 7, 2018.

Test for compatibility with the core banking system of UBS.NET

Aladdin R.D. company, the Russian developer and solution provider for information security support, and UniSab company, the supplier of information systems for banks and financial institutions, at the end of November, 2017 completed tests on compatibility of the products.

According to the results of tests the correctness of joint work USB- tokens and smart cards of a line of JaCarta was confirmed and the automated banking system UBS.NET. For check of compatibility of products of Aladdin R.D. with systems remote banking (RBS) UBS Home (ASP.NET Core and ASP.NET WebForms platform) and UBS Office JC-WebClient application 4.0 was used.

At the same time the following models of USB tokens and smart cards of JaCarta are supported (*): JaCarta-2 GOST, JaCarta-2 PKI/GOST, JaCarta-2 PRO/GOST, JaCarta-2 PKI/BIO/GOST, JaCarta GOST, JaCarta PKI/GOST, JaCarta PRO/GOST, JaCarta PKI/BIO/GOST, JaCarta GOST/Flash, JaCarta PKI/GOST/Flash.

JaCarta-2 GOST and JaCarta GOST — USB tokens and smart cards for providing strict two - or three-factor authentications (including with identification on a fingerprint), formations and verifications of the strengthened qualified electronic signature (EDS) and also safe storage of the user objects and data (digital certificates, passwords, etc.). Devices are certified FSB Russia as means of the EDS (certificates No. Federation Council/124-3112 for JaCarta-2 GOST and No. Federation Council/111-2750 for JaCarta of GOST).

JC-WebClient is the solution allowing to build in easily web applications and cloud services of function for work with USB tokens and smart cards. Application of JC-WebClient allows to implement strict mutual two-factor authentication of the user and the Web server, formation and verification of the strengthened EDS and strengthened by the qualified EDS, data encryption, transferred between the client computer and the Web server and also safe confirmation of transactions.

The core banking system of UBS.NET is the full-function multicomponent solution providing automation of activity of banks of any scale, covering all directions of banking activity (automation of corporate and retail service, the solution for business with bank cards, RBS, financial markets, formation of the obligatory and analytical reporting, etc.). The solution RBS of UBS Home is intended for services for individuals, the solution of UBS Office — for legal.

(*) — for the combined models of devices support only is provided to functionality of GOST (means of the EDS of Kriptotoken of EDS for JaCarta line devices, means of the EDS and a CIPF "Kriptotoken of 2 EDS" for JaCarta-2 line devices).

Certification of solutions of partners on compatibility with JaCarta-2 GOST devices

On November 20, 2017 the Aladdin R.D. company announced the beginning of the procedure of certification on compatibility of products of partners with JaCarta-2 GOST line devices.

Within the program the producers which provided compatibility of the products with USB-tokens and smart cards of JaCarta-2 GOST will have an opportunity to expand a solution portfolio and to fulfill the requirements of the legislation of the Russian Federation.

In 2018 there will be a mass transition to the updated standards of formation and verification of the electronic signature (ES) and development of a hash — GOST P 34.10-2012 and GOST P 34.11-2012. At the same time use of the scheme of the signature of GOST P 34.10-2001 for formation of the EDS after December 31, 2018 is not allowed.

The company put on the market the next generation of the certified means of the EDS — JaCarta-2 GOST in form factors an USB token, a smart card and the module of security (SIM cards and chips for installation on printed circuit boards). In them old cryptographic algorithms GOST P 34.11-94, GOST P 34.10-2001 and GOST 28147-89 and others — GOST P 34.10-2012 and GOST P 34.11-2012 are hardwired. Scopes of JaCarta-2 GOST:

  • systems of remote banking,
  • delivery of the electronic reporting,
  • electronic document management
  • electronic customs declaring,
  • electronic marketplaces,
  • corporate and state portals,
  • web services where it is required to implement secure access of users and to provide the legal importance of their actions.

For integration of JaCarta-2 GOST the developer kit (SDK) and all necessary program components, examples of source codes, certified materials is provided to technology partners of Aladdin R.D. for acquaintance, documentation for embedding of devices using different applied interfaces.

After embedding of JaCarta-2 GOST the certificate giving the chance officially to deliver these devices within the general affiliate program of Aladdin R.D. is provided to the partner

Opportunity for work with the portal of FTS via the browser Sputnik

On September 21, 2017 the company Aladdin R.D. announced that the legal entities and individual entrepreneurs using JaCarta line tokens can work in a personal account now Federal Tax Service Russia through browser Sputnik.

As you know, for a full-fledged work in a personal account of the legal entity or individual entrepreneur it is necessary to use the browser supporting enciphering the protected connections in accordance with GOST. Answered until recently given conditions Microsoft Internet Explorer. The Russian browser Sputnik has means cryptographic data protection (CIPF) developed according to the Russian GOST standards that allows to use it for the protected document flow during the work in the Personal account of the taxpayer. As key carriers of the organization and entrepreneurs can use all line of tokens of JaCarta — JaCarta-2 of GOST, JaCarta of GOST, JaCarta PKI, JaCarta LT and JaCarta PRO.

According to official figures for September, 2017, more than 472.6 thousand users of "Personal Account of the Taxpayer of the Legal Entity" service, in "Personal Account of the Taxpayer of the Individual Entrepreneur" service — 760.4 thousand of SP are already registered. Daily 200 organizations and 1000 entrepreneurs join services on average.

MicroUSB-tokens of JaCarta-2 GOST support the Russian Sailfish

The Aladdin R.D. company announced on September 14, 2017 that MicroUSB-tokens of JaCarta-2 GOST support the national operating system for mobile platforms — Sailfish Mobile OS RUS developed by "The open mobile platform".

The protected hardware-software solution based on smartphone Inoi R7 electronic signature JaCarta-2 GOST, domestic with the built-in means (EDS), running Sailfish Mobile OS RUS OS within the Import substitution exhibition was shown to the Russian Prime Minister To Dmitry Medvedev.

The solution provides secure access to remote IT systems and electronic services and is intended for public authorities, state companies, commercial structures and individuals. In particular, mobile devices based on Sailfish Mobile OS RUS with support of MicroUSB-tokens of JaCarta-2 GOST can become irreplaceable assistants for the emergency doctors, inspectors of the traffic police, heads of an average and the top management, auditors and other employees residing out of office or spending the most part of time in business trips.

JaCarta-2 GOST MicroUSB-tokens certified FSB Russia and conforming to requirements of the legislation of the Russian Federation provide safe storage of digital certificates and the EDS key on the alienable carrier. Integration into JaCarta-2 GOST devices is implemented at the level operating system that allows to provide stability of work, high-speed performance, the high level information security and also convenience to the user, emphasized in Aladdin R.D.

Compatibility with Mig24 service

On September 8, 2017 the company Aladdin R.D., the Russian developer and solution provider for providing information security and accredited certification center "NTSsoft" completed tests on compatibility of the products.

According to the results of tests the correctness of work of electronic keys of JaCarta and electronic service "Mig24" for signing of documents was confirmed by the qualified electronic signature (ES). At the same time the following models of keys of a line JaCarta — USB tokens of JaCarta PKI, JaCarta of GOST, JaCarta PKI/GOST, JaCarta PKI/Flash, JaCarta GOST/Flash and JaCarta LT are supported.

JaCarta-2 GOST

On May 2, 2017 the kmpaniya Aladdin R.D. reported - the line of tokens of JaCarta-2 GOST using means cryptographic data protection (CIPF) "Kriptotoken of 2 EDS" completed certification of century FSB Russia.

JaCarta-2 GOST is the line of smart cards, USB- and MicroUSB-tokens for work with the EDS entering into family of means of authentication and the electronic signature (ES) JaCarta. In devices support of modern Russian cryptographic algorithms GOST P 34.10-2012 and GOST P 34.11-2012 (according to the statement from the document of FSB of Russia No. 149/7/1/3-58 of 1/31/2014 "About an order of transition to use of the EDSs new standards and function of hashing", use of the scheme of the signature of GOST P 34.10-2001 for formation of the signature after December 31, 2018 is not allowed) is implemented.


Possibilities of JaCarta-2 GOST

  • two-factor authentication of the user at an input in corporate systems, the websites and cloud services;
  • formation and verification of the strengthened qualified EDS;
  • the organization of a secure channel for ensuring the entrusted authentication with an exception of cases of interception and substitution of authentication data;
  • safe storage of key information (key pairs and certificates) and program CIPFs;
  • storage of the ciphered data in the file system of a token or smart card;
  • calculation of HMAC (hash-based message authentication code) for integration with systems using one-time passwords (OTP);
  • work as the alienable cryptomodule as a part of other products.

Tokens of JaCarta-2 GOST can be used in the systems of remote banking, the systems of delivery of the electronic reporting, electronic document management systems, electronic marketplaces, corporate portals, portals of public services, the systems of electronic customs declaring and web services where it is required to implement secure access of users and to provide the legal importance of actions of users.


Main properties of tokens JaCarta-2 GOST

  • the increased security — in JaCarta-2 GOST the specialized protected microcontrollers with architecture of Secure-by-Design and the improved protection mechanisms are used (password politicians, authentication using a signature PIN code, an expanded role model, the unblocking modes, etc.);
  • the graphical interface for work with all models of smart cards and tokens of JaCarta-2 GOST well universal remedy of administration with the intuitive graphical interface (software package "Uniform Client of JaCarta");
  • optimization of price policy — purchasing JaCarta-2 GOST the customer can select and pay those functions which are necessary to it;
  • compatibility — tokens of JaCarta-2 GOST work with all popular operating systems Microsoft Windows (including Microsoft Windows 10), different variations of GNU Linux MSAF (including), Apple mac OS (10.10 and 10.11);
  • compliance to international standards — the used microcontrollers and the operating system correspond to a profile of security Smart Card Security User Group — Smart Card Protection Profile (the reached trust level — EAL 4+) and Security IC Platform Protection Profile (the reached trust level — EAL 5+).

The received certificate of FSB of Russia No. Federation Council/124-3112 of April 25, 2017 confirms that the CIPF "Kriptotoken of 2 EDS" as a part of the product JaCarta GOST (the commercial name — JaCarta-2 GOST) in options of execution 9 and 10 conforms to requirements of GOST 28147-89, GOST P 34.11-94, GOST P 34.10-2001, GOST P 34.10-2012 and GOST P 34.11-2012, requirements to the CIPF intended for the data protection which is not containing the data which are the state secret, class KC1 (option of execution 9) and KC2 (option of execution 10), to requirements to digital signature facilities (EDS) approved by the order of FSB of Russia of December 27, 2011 No. 796 set for class KC1 (option of execution 9) and KC2 (option of execution 10), and can be used for cryptographic protection (creation and management of key information, data encryption, contained in areas of RAM, calculation of the message authentication code for the data which are contained in areas of RAM, calculation of hash value for the data which are contained in areas of RAM, implementation of the EDS functions according to the Federal law of April 6, 2011 No. FZ-63 "About the electronic signature": creation of the EDS, verification of the EDS, creation of the EDS key, creation of a key of verification of the EDS) information which is not containing the data which are the state secret.

«
Timely certification of JaCarta-2 GOST as a personal digital signature facility allows our clients and customers to switch to state standard specifications of 2012 smoothly. JaCarta-2 GOST tokens with a CIPF "Kriptotoken of 2 EDS" will be available to the order from the second half of May, 2017.

Sergey Gruzdev, CEO of Aladdin R.D.
»

JaCarta is compatible to TESSA

On March 22, 2017 the companies Aladdin R.D. also [[ Syntellect|Syntellect]] announced completion of testing of a line of JaCarta and the platform Tessa regarding correctness of joint work.

According to signed certificates of compatibility, according to the scenario of authentication the TESSA platform is compatible to models of electronic keys and smart cards of a line of JaCarta:

  • USB tokens and smart cards of JaCarta PKI, JaCarta PKI/BIO and JaCarta PKI/GOST,
  • USB tokens of JaCarta PKI/Flash and JaCarta PKI/GOST/Flash.

As additional software when testing the Uniform Client of JaCarta PC 2.9.0.1531 and was used above. Testing of smart cards is held using line USB card readers ASEDrive. The correctness of work of the specified models is confirmed with Windows XP Windows Vista, Windows 7 and Windows 10.

Additional testing was held for the scenario of the electronic signature. According to signed certificates of compatibility, according to the scenario of the electronic signature the TESSA platform is compatible to models of electronic keys and smart cards of a line of JaCarta:

  • USB tokens and smart cards of JaCarta PKI, JaCarta PKI/BIO, JaCarta of GOST and JaCarta PKI/GOST,
  • USB tokens of JaCarta PKI/Flash, JaCarta GOST/Flash and JaCarta PKI/GOST/Flash.

As additional the Uniform Client of JaCarta PC 2.9.0.1531 and above, by a CIPF of VIPNet CSP 4.2 and also a CIPF of CryptoPro CSP 4.0 is used. Smart cards were tested using ASEDrive line USB card readers. The correctness of work with Windows XP, Windows Vista, Windows 7 and Windows 10 is confirmed.

Integration of electronic keys of JaCarta into the Duo Security platform

As a result of testings the compatibility of USB tokens of JaCarta WebPass and JaCarta U2F with a cloud platform of two-factor authentication of Duo Security is confirmed and also the operability of the Duo platform and USB tokens on the example of authentication in CMS WordPress using USB tokens of JaCarta and a plug-in from Duo Security is checked. As authenticators the platform by default uses the choice from OTP by the SMS, the Push-notification or a call back. In addition the platform supports JaCarta line OTP tokens - JaCarta WebPass and also JaCarta U2F.

2016

The uniform Client of JaCarta underwent inspection control in FSTEC of Russia

According to the results of inspection control in the FSTEC certificate of Russia No. 3449 upgraded version of the Uniform Client of JaCarta. The certificate certifies that the Uniform Client of JaCarta as a part of a software package of authentication and safe information storage of users of JaCarta of version 1.5 is the software tool of the data protection which is not containing the data which are the state secret and conforms to requirements for the 4th level of absence control of not declared opportunities (NDV) and specifications. The Uniform Client of JaCarta in personal data information systems to 1 level inclusive allows to use it and during creation of automated information systems to a class of security 1G inclusive.

Directum and Aladdin R.D. Ltd signed certificates of compatibility of the products

The certificate of technology partnership confirms correctness of system operation of electronic document management of DIRECTUM of version 5.3 with USB tokens and smart cards of a line of JaCarta. They ensure protection EDMS and safety of document flow during all lifecycle of documents.

The compatibility of electronic keys of JaCarta and mobile application DIRECTUM Solo of version 1.3.0.10 for operating system Android version 4.0.3 above is also confirmed by the certificate of mutual compatibility.

JaCarta U2F is compatible to Blokhost-MDZ agrarian and industrial Complex from Gazinformservice

On the basis of the carried-out tests in the spring of 2016 the certificates of compatibility confirming correctness of work of electronic keys of JaCarta U2F developed by Aladdin R.D. company with a hardware-software complex of a trusted boot of "BLOCKHOST-AMDZ" from "Gazinformservice" were signed. The solution is intended for providing a trusted boot of operating systems of families WindowsUnix//Linux (including the systems of virtualization ESX/ESXi) on IBM the PC personal electronic computers (PEC).

The correctness of work of the above-stated models on operating systems of the Microsoft Windows, Unix and Linux families is confirmed.

2015

The FSTEC certificate is prolonged

On December 22, 2015 the Aladdin R.D. company announced prolongation of the FSTEC certificate of Russia No. 2279 till 12/28/2018 on electronic keys and utilities of a product family JaCarta.

Is confirmed by the certificate: a hardware and software system of authentication and safe information storage of users of JaCarta - an information protection software and hardware from unauthorized access. The product conforms to requirements of the regulating document "Protection against unauthorized access to information. Part 1. Information security software. Classification by the level of absence control of not declared opportunities" (State Technical Commission of Russia, 1999) - on the 4th level of control and specifications.

In September, 2015 Aladdin R.D. completed certification in FSTEC of Russia of the software package (SP) "JaCarta" 1.5 (certificate of conformity No. 3449) that became continuation of development of the JaCarta platform.

Certification of software "the Uniform Client of JaCarta" of development Aladdin R.D., allows to refuse use of separate utilities for the platform Microsoft Windows. In the JaCarta 1.5 PC support Microsoft Windows 8.1 and devices in a form factor of MicroUSB-tokens is implemented.

JaCarta U2F

On October 12, 2015 the Aladdin R.D. company provided an USB token[1].

The device is intended for [2] of users at the appeal to on-line resources, executed in an USB token form factor, using JaCarta token in the Nano body protected from a possibility of cracking and cloning (it is confirmed with the certificate of EMVCo), with support of authentication of the device.

JaCarta U2F (2015)

JaCarta U2F works as USB Human Interface Device (keyboard), does not require installation of additional drivers and will be recognized by a broad spectrum of software platforms and devices.

JaCarta U2F provides two-factor authentication of the user concerning at once several accounts only on presentation of the token and the simplified password (PIN code). As the new device supports the standard U2F protocol drafted by alliance Fast IDentity Online (FIDO, is formed in 2013) for safe strict user authentication without manual entry of passwords, it can perform the functions at the appeal to any on-line resource on which party will deploy the server supporting the FIDO standards.

The functionality of this server can be embedded in the application with which the user interacts directly (programmatically). The server supports this interaction, provides data storage about all registered users (tokens) of the application, verification of authentication data at the address. It can be configured for work only with specific type of tokens.

The token of JaCarta U2F provides safe authentication of the owner to several (more than five hundred) to online resources. At the first appeal to a resource the user should be registered, having entered the login and the password (it is possible simplified 4-character) which are remembered by a server part of support of the U2F protocol on the party of a resource. Then the token generates key pair for authentication on this resource and transfers public key on the resource U2F-server. The server creates a resource identifier and the identifier of key couple of authentication and transfers them to a token.

If the user wants to be connected to a resource where its U2F-token is already registered, after input of the login and (simplified) password (uniform for all resources with which the user interacts) the U2F-server of a resource will create an additional request which contains a resource identifier and the identifier of key pair created on a token at registration. After that, having pressed the token button, the user should confirm the appeal to a resource. On a resource identifier the U2F-token selects the necessary key pair, on private key signs a request and sends it to the U2F-server which checks the signature under a request and provides (or prohibits) access.

According to the statement of developer company, new means of authentication is not means of cryptoprotection of information (CIPF) that saves the user from need of an execution of the license of FSB and at the same time simplifies and reduces the price of use of the device. At the same time the U2F technology protects from a phishing and man-in-the-middle attacks. Besides, as each key pair is connected with URL of an online resource, in attempt of substitution of a resource identifier there will not take place verification of the signature of a request on the server.

Aladdin R.D. sees among customers, first of all, owners of a broad spectrum of the on-line resources interested in secure access of clients and the company who will decide to offer online authentication as service.

JaCarta is certified by FSTEC

On September 28, 2015 the Aladdin R.D. company announced obtaining the FSTEC certificate of Russia on version 1.5 JaCarta PC.

JaCarta devices in different form factors (2014)


According to the results of the tests which are carried out by Eshelon scientific and production association laboratory, the company received certificate of conformity No. 3449, confirmatory: "the software package of authentication and safe information storage of users of JaCarta of version 1.5 is the software tool of protection against unauthorized access to information which is not containing the data which are the state secret, implementing authentication functions including in the environment of virtualization, and access control, protection against unauthorized access to information conforms to requirements of the regulating document ". Part 1. Information security software. Classification by the level of absence control of not declared opportunities" (State Technical Commission of Russia, 1999) - on the 4th level of control and specifications.

The software and drivers which are a part of the JaCarta PC of version 1.5 function in OS Microsoft Windows (from Vista SP2 (32/64 bits) to 8.1 (32/64 bits)) and Microsoft Windows Server (from Windows Server 2008 (32/64 bits) to Windows Server 2012 R2).

Certification became continuation of development of the JaCarta platform to which structure form factors and software, developed by Aladdin R.D. company are added. The issued certificate supplements certificate of conformity No. 2799 received earlier on keys and utilities of the JaCarta family.

The compatibility of JaCarta of GOST with MSVSphere OS is confirmed

On August 31, 2015 Aladdin R.D. company together with "The national center of support and development" declared compatibility of USB tokens and smart cards and signed certificates.

Devices of lines JaCarta of GOST and eToken GOST - personal digital signature facilities (EDS) with the Russian cryptography for formation of the strengthened qualified EDS with not taken EDS key and strict authentication of users.

The certificates of compatibility signed by the companies based on tests confirm correctness of work of USB tokens and smart cards of JaCarta of GOST and eToken GOST with operating systems of family of MSVSphere.

The JaCarta keys are compatible to InfoWatch Traffic Monitor 5.5

On April 29, 2015 the Aladdin R.D. company and InfoWatch Group announced completion of tests on compatibility of the products.

According to reports of Analytical center InfoWatch, record of confidential corporate information on removable mediums is one of widespread scenarios of date leaks of the Russian companies. Therefore blocking of USB ports is considered one of basic functions of any solution for protection against internal threats. However as the USB port is also necessary for use of electronic keys and smart cards, the solution for protection against internal threats should provide a possibility of application of means of two-factor authentication along with blocking of other USB devices.

Use of means of two-factor authentication, as well as use of technical means of protection against internal threats, is the standard of information security support in public sector, banks and insurance companies and also the organizations of many other fields of activity. InfoWatch Traffic Monitor and JaCarta - widespread solutions in the class and testing for compatibility will allow the Russian companies to increase security level, integrating possibilities of products.

"We care for that implementation of our solution was the most convenient and simple. As today JaCarta is one of the most popular models of electronic keys, we tested InfoWatch Traffic Monitor on compatibility with all line of these devices. Thus, the companies will not experience any difficulties when sharing technologies InfoWatch and Aladdin R.D., – noted Konstantin Lyovin, the sales director of the company InfoWatch in Russia and the CIS countries. – Besides, as and InfoWatch, Aladdin R.D. are also the Russian companies, joint implementation of our products by the companies of public sector will allow not only to protect reliably IT infrastructure, but also to increase import substitution level in the organization".

The eToken USB keys and smart cards of JaCarta are compatible to the information security facility Secret Net 7

On February 26, 2015 the Aladdin R.D. company announced results of tests of interaction of smart cards and USB tokens of product lines of JaCarta and eToken with an information security product from NSD Secret Net 7 from Code of Security company.

On the basis of results of testing of the company signed the certificates of compatibility testimonial of correctness of work of electronic keys of JaCarta and eToken with the information security facility from NSD Secret Net 7 (service pack 3, version 7.3) intended for data protection at workstations and servers.

Proceeding from the submitted documents, the information security facility from NSD Secret Net 7 can interact with models of smart cards and electronic keys:

  • JaCarta of GOST,
  • JaCarta GOST/Flash,
  • JaCarta PKI,
  • JaCarta PKI/Flash,
  • JaCarta PKI/GOST,
  • eToken PRO (Java).

USB tokens and smart cards of JaCarta are compatible to thin clients of TONK

On January 26, 2015 the Aladdin R.D. company and TONK Group announced signing of certificates of compatibility of the products.

Smart card of JaCarta, 2014

The certificates of compatibility signed by the companies confirm correctness of work of electronic keys of JaCarta and eToken with thin clients TN1221, TN1421, T1521, TN1621, TN1921, T2021, WINBOX2, WINBOX3, SB 200W on a basis operating system Windows Embedded.

For authentication in a terminal session (Windows, Citrix, VMware) using the digital certificate which is stored on electronic key, and a probros of GOST keys in a terminal session with thin clients of TONK models of USB tokens and smart cards can be used:

electronic keys:

  • JaCarta GOST/Flash,
  • JaCarta PKI/GOST,
  • JaCarta PKI/Flash,
  • JaCarta PKI/GOST/Flash
  • eToken NG-Flash.

2014

JaCarta of GOST is certified by "personal means of the EDS"

On June 16, 2014 the Aladdin R.D. company announced obtaining the certificate of conformity of FSB of Russia on "A personal digital signature facility of Kriptotoken of EDS, held for use jointly from a CIPF of Kriptotoken as a part of the product JaCarta GOST.

The certificate of FSB of Russia No. Federation Council/121-2350 is issued on March 20, 2014. It demonstrates that Kriptotoken of EDS, as a part of a product line of JaCarta GOST, conforms to requirements to the digital signature facilities approved by the order of FSB of Russia of December 27, 2011 No. 796 set for class KC1 and class KC2 and can be used for implementation of functions of the electronic signature (creation of the electronic signature, verification of the electronic signature, creation of a key of the electronic signature, creation of a key of verification of the electronic signature) according to the Federal law of April 6, 2011 No. 63-FZ "About the electronic signature".

One of main advantages of the solution - a possibility of visualization of the signed electronic document and formation of the EDS only after receiving confirmation from the user. The product provides the safe high-level interface, at the same time there is no requirement of obligatory carrying out case studies of correctness of embedding.

"In the market there were many certified means of the EDS conforming to requirements 63-FZ lately. However all of them by rules of use are intended for application in the automated systems functioning without participation of the person, at the same time in them there are no built-in visualization tools. Implementation of functions of visualization in an applied system means carrying out new case studies on correctness of embedding and implementation and obtaining the new conclusion. And this time and money. In our new product we tried to kill this "headache" from our developer partners and customers", - Sergey Gruzdev, the CEO of Aladdin R.D. noted.

JaCarta of GOST treats safe devices of the class Secure Signature Creation Device, completely conforms to the international requirements to devices for creation of the signature according to Directive 1999/93/EU - about an order of use of electronic signatures in the European Community.

The compatibility of Secure MicroSD-tokens JaCarta of GOST and "the Continent of T-10" is confirmed

The companies "Code of Security" and "Aladdin R.D." announced in December, 2014 completion of tests on compatibility of Secure MicroSD-tokens JaCarta of GOST and a CIPF of "Continent-AP" of version 3.6 (execution 8) based on the Continent of T-10 tablet computer.

The certificate of compatibility signed by the companies confirms correctness of work of electronic keys of JaCarta of GOST in the form factor Secure MicroSD with a CIPF of "Continent-AP" of version 3.6 (execution 8) based on the Continent of T-10 tablet computer.

Today "the Continent of T-10" is the tablet computer, the first in the Russian market, with the built-in means of cryptographic confidential information protection intended for the protected remote access in corporate network from mobile devices and also protection of a video conferencing and the IP telephony with users of corporate mobile devices.

For storage of private keys and certificates of public keys of the user in the solution Secure MicroSD-tokens JaCarta of GOST which can be applied to work both on the tablet or the smartphone, and on the notebook or the personal computer are used.

2013

JaCarta

On December 6, 2013 the Aladdin R.D. company, within the press briefing, provided own product line for authentication and identification - JaCarta combining modern technologies and the best practices in the field of modern smart cards of technologies and data protection.

File:Jacarta.png

Description

By the beginning of December, 2013 the company creates two product families of JaCarta:

  • JaCarta PKI - is intended for strict two - and three-factor authentication of users in corporate and state IT systems
  • JaCarta of GOST - for ensuring the legal importance of actions of users during the work with different electronic services.


Implementation

The new JaCarta platform is performed on the latest smart and card chips "Secure by design" - designed as safe and for the purposes of security. They have the built-in protection against cloning, cracking and other special attacks (that is extremely important during creation of means of strict authentication and the EDS), correspond to the international profile of security Smart Card Protection Profile, underwent certification of CAST and EMVCo, support a full range of the "western" and certified domestic cryptography.


Innovations

One of features of the products JaCarta - support of biometric identification of users on fingerprints. Biometric identification can be used as an additional (third) authentication factor at access to crucial information or instead of difficult remembered card PIN code for "simplification of life" to top managers.

JaCarta is supported on all modern platforms Windows Linux Mac OS X, as well as on mobile devices on platforms Apple iOS Android Windows 8.

Certification

The products JaCarta are certified on the line FSB Russia and can be used as means of the strengthened qualified electronic signature and as a CIPF (on class KC2) and also in the area of FSTEC Russia as means authentications and safe storage of key data. Besides, for December 6, 2013 JaCarta is the only means certified for the platform Linux (all distribution kits certified in Russia).


Interaction with payment systems

Smart cards of JaCarta may contain the payment application for a full-fledged work in one of payment systems MasterCard, Visa, Zolotaya Korona and to be emitted by banks within the Electronic Government project (with access for the card holder to the Uniform portal state. services), within "salary" projects, as the uniform electronic certificate of the employee (with access to an enterprise information system, as means of the EDS in workflow systems, electronic biddings, delivery of the electronic reporting, etc.)


Functionality

Authentication

  • Planing two - and three-factor authentication
  • Biometric identification
  • Inalienability of a token from its owner
  • Strict authentication for Web portals and cloud services
  • Electronic certificate of the employee (integration into the ACS, visual identification of the owner)
  • Full-time job in the existing PKI infrastructure


Electronic signature

  • Personal means of the EDS with not taken key and hardware support of national cryptography
  • The electronic signature for mobile devices
  • The electronic signature in not entrusted environment
  • The electronic signature for Web portals and "cloud" services
  • The electronic certificate of the employee on the "salary" card (Visa/MasterCard)


Safe storage of key information

  • Storage of key containers of program CIPFs (CryptoPro CSP, VipNet CSP, etc.)
  • Storage of licenses, digital certificates in the protected area of memory of a token
  • Possibility of use of JaCarta with more than 100 products of technology partners and software developers


Specifications

Architecture of the system software and basic principles

  • Multiplatformity
    • Support of different OS (32/64): Windows, Linux, Mac OS
    • Support of different architecture: h86, ARM, RISC
    • Support of mobile platforms: Apple iOS Android Windows 8
    • Identical high-level API for all platforms, for all used chips and devices, uniform SDK
    • Full range of standard interfaces: APDU (PC/SC), PKCS#11 (#5,#7,#10), MS CAPI (CSP, CNG), Java Cryptographic Provider (JCP)
    • the Full range of the functions necessary for a full-fledged work with the cryptography, Certification centers qualified by certificates of X.509, biometrics (additional software is not required)

  • Compatibility with the existing install base of program CIPFs
    • All JaCarta models support storage of key containers of program CIPFs (CryptoPro CSP, VipNet CSP, etc.)

  • Convenience of transition to hardware-assisted new models of the Russian cryptography

    • JaCarta provides simultaneous support of two operation modes with CSP: storage of a key container and work with not taken EDS key

  • The built-in support of hardware of work with the EDS in not entrusted environment (readers with visualization)
  • Correctness of embedding of the certified CIPFs in the system software of JaCarta (with option/GOST)

    • B system libraries fulfills all specific requirements of FSB of Russia for embedding of the certified CIPFs in the application software ("Impact assessment") and gave them on certification.

the module "Kriptotoken" of the product JaCarta GOST has the certificate of FSB

On December 24, 2013 the Aladdin R.D. company reported: the component of cryptographic protection of Kriptotoken which is a part of products of the line of JaCarta of GOST received the certificate of FSB.

This certificate of December 12, 2013 No. Federation Council/121-2270 gives the chance of use of the products JaCarta GOST for implementation of functions of the strengthened qualified electronic signature (creation of a key of the electronic signature, creation of a key of verification of the electronic signature, automatic creation and verification of the electronic signature) according to the Federal law of April 6, 2011 No. 63-FZ "About the electronic signature".

To attention of users of the versions of the products JaCarta GOST having the certificate of conformity of FSB of May 11, 2011 No. Federation Council/124-1671 released earlier - under the terms of the new certificate changes are made to the Form of a product.

Notes