RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2

Aladdin Crypto Pro FKN CSP

Product
Developers: Aladdin R.D., Krypto-PRO
Last Release Date: 2015/08/31
Technology: Cybersecurity - Means of enciphering

Content

Crypto Pro of eToken CSP represents the hardware-software solution written for formation of the EDS in accordance with GOST P 34.10-2001 with full compatibility with CryptoPro CSP. The solution provides the full range of cryptographic transactions implemented in a CIPF of CryptoPro CSP 3.6 and a full integration with infrastructure of PKI based on Crypto Pro of UTs. At the same time all transactions with private keys of the EDS are executed hardware, in the eToken chip, private keys never leave the chip and cannot be intercepted. The term of a defstviye of private key of the user – up to 3 years.

Crypto Pro of eToken CSP resists to the attacks directed to substitution of hash value of the signed document, substitution of value of the signature (for example, at terminal access), and also on selection of the PIN code. In the solution support of the protected exchange protocol between the eToken hardware key and program components of CryptoPro CSP is implemented (technology of work with the functional key carrier - FKN).

Developers allow a possibility of embedding in addition in USB keys or smart cards of eToken of a passive radio-tag of RFID at production of carriers. Existence of RFID allows to undergo to the employee of the enterprise control of physical access to the premises using the ACS which is available in the organization. At the moment RFID can be built in eToken PRO smart cards, the eToken PRO, eToken NG-OTP and eToken NG-FLASH USB keys. The possibility of implantation of the following types of radio-tags is supported: EMMarin, HID, Mifare std 1k, BIM 002 (tag), KIBI 002 MT (card), Bewator Cotag, i-Class, i-Code, INDALA (FlexISO).

Existence of RFID in a token forces the user to take out a key from the computer when moving across the enterprise territory as without it it will not be able to get to other premises. It fixes a problem of negligence of the employee (can leave the computer with full access to its information) as at taking out of an USB key from port or a smart card from the reader there is a blocking of the operating system.

CIPF of Crypto Pro of eToken CSP with support of the SafeTouch smart card reader

The company of Krypto-PRO, built in support of the SafeTouch smart card reader from SafeTech company for new means of cryptographic protection of Crypto Pro of eToken CSP.

The CIPF of Crypto Pro of eToken CSP is implemented using architecture "Functional Key Carrier" (FKC) and allows to bring protection of secret key of the user to qualitatively new level, to increase the term of its action up to 3 years and also it is essential to limit sales opportunities of the attacks connected with selection of values of the password (PIN).

Support of the SafeTouch smart card reader in Crypto Pro of eToken CSP will allow to secure as much as possible process of the signature of documents due to visual control of the data transferred to the signature to a smart card, by their output to the display of the SafeTouch device.

The SafeTouch smart card reader significantly increases security during the work with electronic document management systems because does not allow to initiate programmatically the procedure of the electronic signature without the consent of the user which should be expressed in clicking of the button of confirmation of transaction. At the same time the main details of the signed document are output to the SafeTouch display that excludes its imperceptible substitution.

2015: The version of Crypto Pro of FKN CSP 3.9 is certified by FSB

On August 31, 2015 the companies Krypto-PRO also Aladdin R.D. announced the positive conclusion FSB of Russia on the joint product "Crypto Pro of FKN CSP" of version 3.9 using in the structure USB tokens and smart cards JaCarta CryptoPro[1].

Scheme of signing of the document, 2015

The statement from the conclusion of FSB of Russia received by owners of a product confirms compliance of means of cryptographic information protection of "Crypto Pro of FKN CSP" of version 3.9 (executions 1 and 2) "To requirements to the cryptographic (cryptographic) tools intended for the data protection which is not containing the data which are the state secret" and to "Requirements to digital signature facilities" on classes KC1 and KC2.

The product "Crypto Pro of FKN CSP" is intended to version 3.9 (earlier known under the name "Crypto Pro of eToken CSP") for formation of the electronic signature in the systems of legally significant electronic document management and other information systems where EDS technologies are required (the systems of the remote banking (RB), electronic marketplaces, the systems of delivery of the electronic reporting, electronic declaring of the loads moved through border, the systems of corporate/departmental electronic document management (EDMS), etc.).

"Crypto Pro of FKN CSP" of version 3.9 consists of two main a component – cryptoprovider (CSP) of development of Kripto-PRO company and a new token of JaCarta CryptoPro from Aladdin R.D. In "Crypto Pro of FKN CSP" basic cryptographic functions are performed in JaCarta CryptoPro token, and the main feature of the created solution - a possibility of formation and storage of private keys and the EDS keys on a token in not taken type (validity period of private key increases up to three years). The data transmission channel between a token of JaCarta CryptoPro and a program part of "Crypto Pro of FKN CSP" is protected using [2]

"For the user in the history with "Crypto Pro of FKN CSP" of version 3.9 two exclusively practical moments are key: protection of secret key of the user is brought to qualitatively new level and validity period of secret keys is increased up to 3 years", – Igor Kurepkin, the deputy CEO of Kripto-PRO LLC noted.
Sergey Gruzdev, the CEO of Aladdin R.D. company, told: "Distinctive feature of a new token is the principle of Secure by design – is designed as safe and for security. It has the built-in protection both on hardware, and on program levels from cloning, cracking and the other attacks known today and also is the fastest among other FKN-devices. Long ago wait for a product in the market, the companies of different segments of the market dealing with large volumes of the signed documents will become the main consumers".

Notes

  1. of Crypto Pro of FKN CSP 3.9
  2. the Fknfunktsionalny Key Carrier (FKC) technology – the technology allowing to increase considerably security of the systems using the electronic signature and maintaining architecture of the hardware-software products with a smart card or an USB key hardwiring the Russian cryptoalgorithms of the EDS and enciphering (GOST P 34.10-2001/GOST P 34.11-94, GOST 28147-89), allowing to store and use safely private keys in a secure memory of a smart card or USB key.