Installation and configuration takes minutes!
Configure and monitor the server via an intuitive console. Manage keys and certificates simply.
Access the services via a REST API or Krestfield’s lightning fast API (Available for Java and .NET)
Migration to new algorithms can be achieved with no updates to the client applications being required. Post Quantum algorithms will be supported once standardised inline with the Krestfield crypto agility policy.
Over 1000 transactions per second can be achieved with a single server instance! Contact ID-3 for more details and performance metrics.
Multiple Deployment Options
Deploy on Premises, Azure or AWS on Windows, Linux or Solaris. Simple and rapid local desktop options are available for testing,
Options to deploy a single instance or hundreds of instances across the estate.
Out of the box support for a wide range of HSMs, including:
- nCipher Range
- AWS CloudHSM
- Azure Key Vault
- Google KMS
- Thales (Gemalto) Luna Range
- Thales DPoD (Data Protection on Demand) Cloud HSM
- Thales PayShield (both Variant and Key Block LMK Supported)
For test and low security options Software key stores can also be used.
Multiple Signing and Verification Options
Support for PKCS#1 (Raw), PKCS#7/CMS signatures, multiple hashing algorithms as well as CRL and OCSP revocation checking (including IdenTrust requirements).
Many configuration options are available including custom path checking and specific signature validation checks.
AES Data Encryption
High performance data encryption utilising hardware security modules to protect data at rest.
Don’t want to worry about hosting? Leave it to us. Contact ID-3 to discuss your requirements.
Try for Free
Want to try it out? Obtain a free trial hosted in the cloud or at your site. Just drop us a line.