Hitachi Software Releases "Smartfolder III" Smart Card Access Software for PKI
- Hi-level security ensured by storing private keys and digital certificates for PKI.
- Illegal use is prevented by completely separating the authorities of issuer, administrator, and user. -
Hitachi Software (President: Hiroyuki Kanekiyo, Headquarters: Yokohama) has developed and released Smartfolder III, which provides for storing private keys and digital certificates for PKIs (Public Key Infrastructures) in a smart card (IC card), ensuring a high level of security. Currently, the improvement of information security is becoming a significant issue in various areas. The method of preventing leakage of confidential information includes data encryption and digital signatures. The private keys and digital certificates for PKI are used for such data encryption and digital signatures. It is absolutely necessary to prevent a private key from being used by anyone other than the holder. However,
(1) Since the private keys and digital certificates for PKI are normally stored in PC hard drives, physical access to the PC by users other than the private key holder could compromise the security of encrypted data and digital signatures.
(2) If the hard disk fails, the PKI private key stored in it may be lost, making it impossible to decrypt the encrypted data.
(3) Decryption of encrypted data or digital signature can be only be performed on the PC in which the private key is stored.
There are other problems with the private key and digital signature system.
Smartfolder III, however, allows the holder of a private key, which is the key to the PKI, to be stored in a smart card to prevent such problems. This ensures a high level of security. The features of Smartfolder III are as follows:
1. Features
(1) Since the PKI private key is stored in a smart card, the holder can carry it, reducing the possibility of theft. Also, the holder can receive encrypted mails or authorize documents with his/her digital signature at locations other than his/her own desk.
(2) Since a PIN (Personal Identification Number) must be entered to use the PKI private key stored in a master card, it is almost impossible for someone other than the holder to use it. For increased security, more than one incorrect PIN entry will lockout the card.
(3) Smartfolder III supports the smart card OS "MULTOS" that enables industry-standard multi-application and also supports the generation of a key within the card. This enhances PKI security and allows users to incorporate various card applications, further enhancing the convenience of the smart card.
(4) Smartfolder III supports the authorization services of other well-known CA software such as Baltimore's CERT, Entrust's Entrast (planned), and VeriSign. Other CA software can be supported by taking advantage of Hitachi Software's proprietary technology.
(5) Since the product is divided into "Issuer tool," "Administrator tool," and "User tool," the authorities of the issuer, administrator, and user can be separated.
(1) Smartfolder III supports the RSA 1024 bit key required by the Digital Signature Law that became effective on April 1, 2001.
(2) The PKI private key and digital certificate stored in a smart card support Microsoft CryptoAPII, and either Netscape Navigator or Internet Explorer can be used for the browser and mail software.
(3) Since card readers /writers compliant with PC/SC standards are supported for accessing smart cards, such reader/writers offered by major vendors can be used. For operation-tested reader/writers, contact Hitachi Software.
