| The name of the base system (platform): | OpenSSL |
| Developers: | Infotecs |
| Last Release Date: | 2023/09/20 |
| Technology: | Information Security - Encryption Tools |
Content |
Main article: Cryptography
ViPNet OSSL software is based on an open library that source code OpenSSL allows you to use the Russian cryptographic algorithms GOST through OpenSSL access.
2023
Obtaining the certificate of the FSB of Russia for the ViPNet OSSL software package
The InfoTeCS company announced on September 20, 2023 that it had received a certificate from the FSB of Russia No. SF/124-4605 from the 21.08.2023 for the ViPNet OSSL software package.
ViPNet OSSL 5.4 is a complete embedded cryptographic information protection tool (CIPF) and can be used by developers applications in and application systems with which you can sign documents and verify, electronic signature establish protected connections of 1.2 to protocols TLS and 1.3, create cryptographic secure messages in the format CMS and work with various electronic signature formats. These features are now available for managed applications as well. OS Aurora
The ViPNet OSSL software package version 5.4 meets all the requirements of the FSB of Russia for CIPF and the requirements for electronic signatures.
In the updated version of ViPNet OSSL:
- The list of supported operating systems, their versions and processor architectures has been expanded, support for 18 updated models of external devices (tokens, smart cards, Bluetooth devices) has been added. The updated list can be found on the product page in the "Capabilities" section.
- The work of tokens, smart cards and Bluetooth devices is now supported in versions for mobile operating systems.
- Measures have been increased safety when interacting with. server NGINX
- Added support for current recommendations Technical Committee for Standardization "Cryptographic Information Protection" (TC 26). *Examples of the program code that implements the basic functions of the product in all versions have been added.
 | The emergence of a certified ViPNet OSSL crypto provider is important for mobile application developers. Its use in the Aurora OS environment greatly simplifies the implementation of solutions with a level of information protection and communication channels in full compliance with the requirements of Russian regulators, commented Maxim Piskarev, Director of Ecosystem Products at Aurora.
|  |
| | Cryptographic libraries allow software developers faced with the need to implement protection of software data and personal data of users to significantly save resources. Protecting information in mobile and desktop applications, performing cryptographic functions in application systems, installing a TLS connection and working with an electronic signature - the implementation of these scenarios when using the certified ViPNet OSSL crypto library becomes convenient both from the point of view of meeting the requirements of the regulator and from the point of view of time costs for conducting an impact assessment. noted Nikolai Smirnov, Product Director of InfoTeCS.
| |
Certification ViPNet OSSL 5.0 FSB of Russia
The company "InfoTeCS" on June 15, 2023 announced the receipt of a certificate of the FSB of Russia for the ViPNet OSSL software complex.
Certificate No. SF/124-4490 dated 11.04.2023 confirms the compliance of the ViPNet OSSL software complex with the requirements for cryptographic information protection tools designed to protect information that does not contain information constituting a state secret of class KS1 (for versions 1, 4, 7, 8, 9), class KS2 (for versions 2.5), requirements for electronic signature means established for class KS1 (for versions 1, 4, 7, 8, 9), class KS2 (for versions 2, 5).
The certified version of ViPNet OSSL 5.0 is cross-platform and can be integrated used in application systems on,, operating systems Windows,, and Linux macOS. iOS Android Aurora The product can be used on the client and side server , collaboration with web servers,, Nginx stunnel is supported. Apache ViPNet OSSL 5.0 supports popular hardware tokens and, in Rutoken addition JaCarta, it is possible to use the built-in software token.
Built into third-party solutions, ViPNet OSSL allows you to implement document signing and electronic signature verification, establish secure connections using TLS 1.2 and 1.3 protocols, create cryptographically secure messages in CMS format, and work with various CAdES and XAdES electronic signature formats. The ability to export and import# PKCS12 keys into ViPNet OSSL ensures compatibility of key formats with other crypto providers.
Obtaining a certificate of the FSB of Russia for compliance with the requirements for class KS3 (execution 3 and 6) is expected in the 3rd quarter of 2023.
2022
JaCarta Electronic Key Compatibility
InfoTeCS, a domestic information security vendor, and Aladdin R.D., a Russian developer and provider of information security solutions, have completed compatibility tests for the ViPNet OSSL cryptographic library and JaCarta electronic keys. This was announced on April 29, 2022 by Aladdin R.D.
Based on the test results, compatibility certificates were signed confirming the correctness of using the ViPNet OSSL software complex with USB tokens and smart cards JaCarta-2 GOST and JaCarta-2 PKI/GOST, subject to the use of additional software "Unified JaCarta Client" version 2.13 or higher. Testing was carried out in operating systems of the Windows and Windows Server families, as well as in Russian operating systems, such as Astra Linux SE Smolensk, Astra Linux CE Eagle, Red OS, Alt 8, Rosa Cobalt, Rosa Enterprise Linux.
The ViPNet OSSL software complex is a cryptographic library based on OpenSSL and designed to embed cryptographic functions in third-party applications, for example, in systems of securely significant document flow or electronic reporting systems. ViPNet OSSL provides secure work with web services using Russian cryptographic algorithms.
The products of the JaCarta line are designed to organize enhanced or strict authentications information in systems and services, ensure the legal significance of documents and user actions using, as well electronic signature as for safe storages containers software, cryptographic information protection tools (CIPF) user, data certificates, etc. passwords
| | "In developing ViPNet OSSL, we aimed to provide the end user with a tool with which to embed cryptographic functions into various types of information systems. Now our customers will be able to use, among other things, JaCarta tokens, in which the current cryptographic algorithms GOST R 34.10-2012 and GOST R 34.11-2012 are implemented in hardware, "- noted Arina Em, Product Manager of InfoTeCS. | |
| | "Our multi-year partnership with InfoTeCS is bearing fruit in the form of joint safe and functional solutions. Integration with ViPNet OSSL also meets these standards. Customers can easily use ViPNet OSSL cryptographic functions in their developments and additionally get a high level of security by configuring it to work with hardware cryptography JaCarta-2 GOST, JaCarta-2 PKI/GOST, "- added Sergey Chelyshev, head of the integration group "Aladdin R.D." | |
ViPNet OSSL Capabilities
According to information for May 2022, ViPNet OSSL allows:
- Create protected a connection protocol TLS using 1.2 and TLS 1.3.
- Create electronic signature keys, generate and verify electronic signature keys.
- Hash data.
- Encrypt data.
- Create messages in CMS format (PKCS# 7).
- Work with key certificates in Kh.509 format.
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |