Eyenetwatch.com - The UK's top Biometric Reseller
Fingerprint Scanner Hardware Fingerprint Scanner Software
Buy Hardware Buy Software
> Biometric Security
> Applications
> Technology
> Biometric Consultancy
 
> Fingerprint Hardware
> Fingerprint Software
> PDA Products
> BioWeb Server
> Secure USB Hard Drive
> Iris Scanner Range
> Signature Products
> Lock Down Products
> Encryption Software
 
> View Order
> Home
> Contact Us
> Resources
 
 
 
Application Solutions:
> Access Control
> Time & Attendance
> PC Security & Logon
> User Authentication
> Data Storage/Encryption
 
Biometric Information
> Int'l Biometric Society
> Int'l Biometric Group
> The Biometric Consortium
> Biometrics Research
> UK Government WG
> Organisations using Biometrics
 

 

CryptoIdentity USB Security Token

 

Main Features

Token Functionality

Specifications

 
 
Price per unit £38.95 GBP 
Volume pricing is available please contact us @ sales@eyenetwatch.com 
 

CryptoIdentity is the next generation security token that combines both the smartcard and smartcard reader functionality in a very small package.

 

CryptoIdentity is the best solution for securing data communications on public networks, combining simplicity, ease of integration and low cost.


CryptoIdentity contains a specially designed microprocessor to implement its unique authentication and security features. Its RSA 1024 bit capabilities are provided by an internal cryptographic smartcard supported by Algorithmic Research's PKCS#11 tool-kit that is supplied with the token.


CryptoIdentity's features make it the ideal tool for storing passwords, electronic certificates, creating and verifying electronic signatures, e-shopping and more. The PKCS#11 tool-kit supplied with CryptoIdentity allows for easy integration with other CA vendors.

 

Main Features

CryptoIdentity is a small handy USB security token (about the size of a door key) with an internal smart card chip and operating system performing cryptographic functions in a secure, isolated environment.

CryptoIdentity implements the most advanced cryptographic technologies including PKI capabilities such as on token RSA private key generation and public key exporting.

Thus, the token provides the organizations with the capability to offer high level security and unambiguous identification solutions for internal users and clients, at a low cost.

Thanks to the standard interface and USB Plug&Play capabilities CryptoIdentity provides an easy to use solution without a need for any additional hardware and moreover, it functions as both the smartcard and the smartcard reader, achieving utmost cost efficiency.

Additionally, CryptoIdentity has a capability to easily integrate with Eutron's PKCS#11 tool kit, providing standard security implementation. Through the use of the PKCS#11 tool kit, the security token can be easily integrated with applications from vendors such as Netscape, Baltimore and Entrust.

X509 Certificates can conveniently be stored on the token, providing digital identity.

CryptoIdentity is the ultimate solution to the problem of controlled access and control distribution of information over the Internet. This includes controlling access to web pages, services, databases or any application requiring either user authentication, digital signatures or data encryption.

Powerful cryptography is utilized for even the strongest security needs.

Top of Page

Token Functionality

 

At the heart of CryptoIdentity is an ISO standard smartcard chip with its operating system, secure file storage, and RSA public-key cryptography implementation that provides digital signature and digital identity services to applications.

  • RSA key generation: Support of RSA private and public keys of up to 1024-bits-the keys are created on the token, and the private key is never exposed to the external (potentially hostile) environment. Keys and other application-user data may also be loaded from external sources, if required. The public key can be exported from CryptoIdentity at any time for certification and/or distribution.
  • RSA private key functions (decrypt, digital-signature): Protecting the private key from any attack-all operations utilizing the private key are performed on-token. Supports up to 1024-bit RSA. Future support is planned for longer keys and DSS.
  • Random number generation: Numbers are randomly generated inside the token itself, ensuring that all stages of the key generation process are performed in a secure environment.
  • Support for multi-application and multiple key storage: Multiple keys may be stored on the token. Keys may be accessed by several applications. Each key may be handled by separate access control mechanisms thus ensuring that key-specific operations are separated. Access control and PIN verification CryptoIdentity provides a sophisticated mechanism to ensure that PIN verification and access to keys or any data stored on the token is performed securely and only by authorized users. Authorization masks that define user rights protect each file and directory. The PIN is protected within a special file, and in case of failed attempts to use it, it may be locked.
  • PIN control: Powerful PIN security includes
    • forcing PIN change after a specified period
    • flexible minimum PIN length
    • flexible limit on unsuccessful PIN presentations
    • three-level directory structure, and protection at the file and directory level.
     
  • Authorization masks: CryptoIdentity provides a secure file-store and hierarchical-directory structure that allows authorization/access rules to be established for each file and directory on the card.
  • Multiple-level file system: CryptoIdentity provides a sophisticated directory structure. Files and directories can be created, and information can be stored securely in files organized within directories-up to three levels of hierarchy are supported.
  • Support for ISO-7816 standards: In addition to Eutron extensions for managing and storing keys, CryptoIdentity will fully support the ISO 7816 suite of standards for managing application data and storing arbitrary data when necessary.
  • Support for industry standard algorithms such as:
    • DES (FIPS PUB 46) and
    • SHA-1 (FIPS PUB 180-1) used for verification of PINs and access control.
    • RSA algorithm is used for digital identity.
     
  • Protection against Bellcore attack.

    • Top of Page

Specifications

CryptoIdentity is currently shipped with the Atmel AT90SCC chip due to its enhanced security and cryptography features
Atmel AT90SCC:

    • 8-bit microcomputer in CMOS technology

    • AVR RISC processor architecture

    • Arithmetic processor for 1024-bit RSA operations

    • 16/32-Kbyte Flash memory

    • 16/32-Kbyte EEPROM

    • Minimum of 100,000 write/erase cycles

    • Data retention for minimum of 10 years

    • EEPROM programming voltage generated on chip

    • Power- saving sleep mode

    • Hardware random number generator

    • 1024-bit key generation capability

    • 1024-bit key operations in less than 0.4 second

    • 16-bit timer

    • Supply voltage range of 4.0V to 5.5V

    • 8 mA supply current at 5 MHz (0.2 mA in sleep mode)

    • FrequencyFrequencey range of 400 kHz to 6 MHz

    • ISO 7816 compliance (parts 1-4)

    • Standard speed communication

    Top of Page

 

 
Eye Net Watch is a division of Romsey Associates Ltd - Copyright Romsey Associates Ltd 2001