Harvest

Hello,

What standards are supported with last versions of CAPKI?

thanks for your help.

Regards

Tania Moreno

eSoft

Venezuela

Is anyone able to help out this user with their question?

Thank you!

CAPKI designed to replace ETPKI was introduced in r12.5 GA release.

So release number on 12.5 and after this release supports CAPKI.

CAPKI follows the FIPs Mode Compliance:

http://vetnet/wiki/Wiki.jsp?page=ETPKI

Hello Dave,

The URL does not work.

Regards!

Tania

Open a new browser and copy and paste the URL, that should work.

Hello Dave,

Nope. Tell me that page cannot be showed.

Regards!

Tania

That URL is an internet website that is external to CA and not maintained by CA.

I copied the URL into my browser and it took me to the webpage. I followed the

FIP 140 certification and it provided as follows:

This page describes what ETPKI is doing to gain FIPS 140 accreditation, and
what applications need to do to keep the accreditation.

What is FIPS
140 Accreditation?

FIPS 140 accreditation involves testing a cryptographic module against the
FIPS PUB 140-2 Security Requirements for Cryptographic Modules. Cygnacom has a
FAQ and NIST has some general information with links to the standard.

Why is
FIPS 140 Accreditation needed?

In short, because our customers are either asking for, or demanding it. In
particular, U.S. Government agencies require products that make use of
cryptographic algorithms use FIPS 140-2 accredited implementations.

Communications and sensitive information, e.g. passwords, should be encrypted
with FIPS 140-2 accredited libraries. In practice this means using SSL / TLS for
communications, and encrypting sensitive information with 3DES or AES (one-way
storage of passwords should be done using SHA-1). A best practices guide on
encrypting passwords is being written and will be made available here.