|
|
Spitfire KeyCastle - Enterprise Key Life-Cycle Management
Technical Specifications
Spitfire KeyCastle offers extensive enterprise key management and protection with rich cryptographic capabilities to secure your corporate sensitive data.
|
Download Specifications
You need Adobe Acrobat Reader to read our digital product brochure.
|
|
|
Security |
|
|
- NIST FIPS-197 AES encryption and decryption
- NTT/Mitsubishi Camellia encryption and decryption
- NIST FIPS-46-3 3DES and DES encryption and decryption
- RC2, RC4, RC5 and RC6 encryption and decryption
- CAST5 encryption and decryption
- Twofish and Blowfish encryption and decryption
- IDEA encryption and decryption
- Serpent and Skipjack encryption and decryption
- Pluggable cipher architecture for future cipher upgrade or custom cipher support
- 128, 256, 512, 1024 and 2048 bit public key cryptography
- RSA and DSA public key cryptography
- SHA-1 and MD5 hash generation
- Hardware ASIC cryptographic acceleration (optional)Industry-proven cryptographic processing engine
|
Key Management |
|
|
- Multiple certificate authority (CA) support
- Hardware true random (optional) or software pseudo-random key generation, inquiry and deletion
- Built-in certificate request and revocation check (CRL/OCSP)
- X.509 and PKCS#12 DER and PEM Key Import and Export
- Key Usage Profiling
- RDBMS and Generic LDAP Support and Integration
- Industry Standard PKCS#11
- NIST FIPS-140-1 level 2 cryptographic module support (optional)
- Automatic Certificate Retrieval via HTTP or LDAP
- Certificate Validity Check
- Certificate Revocation Check via HTTP or LDAP
- Certificate Revocation List (CRL)
- Certificate Revocation List Distribution Point (CRLDP)
- Online Certificate Status Protocal (OCSP)
- CRL scheduled download, caching and automatic retry
- OCSP scheduled request, caching and automatic retry
|
Hardware Security Module Support |
|
|
- Schlumberger/Axalto Cryptoflex
- Schlumberger/Axalto Cyberflex
- Gemplus GPK
- Siemens CardOS M4
- IBM JCOP
- Micardo
- Oberthur 64k Java-card
- OpenPGP 1.0 card
- Setcos 4.4.1 cards
- RSA SecurID 3100 cards
- Giesecke & Devrient Starcos
- Schlumberger/Axalto e-gate
- Aladdin eToken PRO
- Eutrom CryptoIdendity IT-SEC
- Rainbow iKey 3000
|
Management |
|
|
- Web based management console
- Central administration and configuration
- User security
- Serial console
- SNMP v1, v2c, v3
- syslog, auto log rotation and auto archive
- Heartbeat and keep alive
|
Accessibility |
|
|
- Web services
- Plain socket
- HTTP/HTTPS
- Java HTTP tunneling
- Java Remote Method Invocation (RMI)
- Native language support: C, C++, Java
- PKI-based client authentication and identity management
- PKI-based channel encryption
|
Disaster Recovery |
|
|
- Configurations backup and restore
- FIPS-140 hardware security module recovery key or software recovery key vault for settings restoration
- Customer-defined recovery quorum (e.g. 2 of 5)
- FIPS-140 hardware security module operator key or operator pin for daily Spitfire KeyCastle operation
- High-availability option for active-active or active-standby operationStateless active-standby failover
|
Platform Support |
|
|
- Solaris, HP-UX, OpenVMS, IBM AIX, Linux, Windows and Mac OS X
- Supports all x86, PowerPC, UltraSPARC, PA-RISC and Itanium architecture hardware
|
The specification and outlook of the model may vary and is for reference only
|
|
Secure Your Data Now
Protect your data with Bloombase transparent encryption.
Bloombase Demonstrations
See how Bloombase protects your digital assets.
Bloombase SupPortal
Get technical support from Bloombase Supportal and Knowledgebase.
|
|
