OpenTrust PKI

The OpenTrust PKI system is the open, building and scalable software solution implementing a public key infrastructure (PKI). OpenTrust PKI exercises centralized operation of lifecycle of keys and certificates.

OpenTrust PKI differs in openness, ease of modulation and scaling. The solution is quickly integrated in already existing corporate IT of infrastructure, having at the same time low total cost of ownership.

Management of Digital Certificates of users, devices and applications

Main OpenTrust PKI functions:

• the full-function web interface for:
  • - Managements and administrations
  • - Works with magazines of audit
  • - Request and release of certificates

• modular structure:
  • - Certificate authority (Certification center)
  • - Center of Registration
  • - The center of Requests and Issues (for users)

• support of work with the SCEP and Microsoft WCCE/CMC protocols
• SOAP interface (WS-I Basic Profile)
• the configured model of role management
• possibility of failsafe installation
• an opportunity to establish a little independent certifying the center on one physical server
• support of algorithms of RSA and Russian algorithms (GOST P 34.10-2001, 34.10-2012, 28147-89, 34.11-94 and 24.11-2012)

OpenTrust PKI is used by a set of the most influential organizations in the world for creation, release and management of digital identities of all users and devices. OpenTrust PKI is a reliable and safe basis for creation of other applications and components, such as access control, digital signatures and safe file transfer.

Using OpenTrust PKI it is possible to control completely credentials of certificates of public keys in IT infrastructures. Besides, OpenTrust PKI is compatible to solutions for creation of corporate badges and control of mobile devices. The modular architecture of OpenTrust PKI provides support of one or several applications, management of certificates and keys locally or on a centralized basis. The solution OpenTrust PKI has the certificate of Common Criteria that confirms observance of the most strict standards of security.

OpenTrust PKI completely supports the Russian cryptographic GOST algorithm. Implementation of GOST allows to use the cryptographic libraries CryptoCom certified by FSB thereby providing a full compliance to the Russian legislation. SNMP monitoring with the console for the integrated PKI monitoring and the built-in support of the majority of web browsers, including Internet Explorer 9 and Google Chrome belongs to other updates. The new version of PKI is already successfully tested by partners of OpenTrust worldwide in different network infrastructures and applications.

It is very easy to make a transfer of an information system of the client on OpenTrust PKI: OpenTrust Express Migration Toolkit provides an easy, safe and fast way of migration of other public key infrastructure on OpenTrust PKI. Moreover, now OpenTrust offers special terms for the organizations wishing to replace the existing PKI solution with OpenTrust PKI.