The Black•Vault CA is a Certificate Authority appliance with an integrated cryptographically advanced Hardware Security Module, Smart Card Reader and resistive Touch Screen Display. | ||
The Black•Vault CA is utilized to provide strong assurance of identity by issuing and managing public-key certificates. Certificates are generated and managed within secure software and trusted hardware. The Private key associated with a Certificate's public key is contained within the FIPS Level 3+ tamper reactive cryptographic boundary of the integrated HSM. Circle of Trust Purpose-Built | ||
Black•Vault CA operations are performed in accordance with NIST IR 7924. Smart Card Multifactor Authentication with M of N ensures that key generation and certificate creation is restricted to those authorized by the Certificate Policy. Autonomous and Network Attached modes of operation are supported. In autonomous operational mode all management operations are performed via the touch screen GUI interface. Authenticated Certificate Signing Request are input as files from the USB drive. Certificate Revocation Lists are published by the internal HTTP server or transferred to a remote server. Online Certificate Status Protocol (OCSP) is used to provide access to the Certificate Revocation List. A Network Attached operational interface is accessed by an authenticated and encrypted Secure Socket Shell channel. Certificate Signing Request are input as files or copied and pasted by an administrator's computer. Real-Time Audits of the configuration and operation provide Security Administrators with the necessary information to discover anomalous activity or failure of critical functions. Audit information, can be sent to a trusted entity, is protected to prevent unauthorized access, modification, or deletion. Critical Security Parameters, such as a certificate's private key, are encrypted by an inaccessible Master key that is zeroized upon tamper. Verifiable Updates: only signed code updates that are verified by the secure boot's private key will be executed. | ||
Military Grade Tamper Reactive • Eliminates Inadvertent Tamper • Inherently Transport Safe | ||
Black•Vault CA utilizes a resistive touch LCD color display to provide an intuitive iconic user interface. A structured menu system facilitates straight forward Key configuration and management. The user interface presents Crypto Officers with a sequence of dialog boxes that lead through a series of well-defined steps to initiate the HSM and provision cards and keys. | ||
| ||
NEW BlackDoor
Ethernet Packet Encryptors
- Encrypt LAN to LAN Traffic
- Secure Proprietary Information
- Standalone Encryption Appliances
- Secure Proprietary Information
- Standalone Encryption Appliances