Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper Why Outsourcing Your PKI Provides the Best Value: A Total Cost of Ownership Analysis2009-07-02 Entrust
  Once one conclude that one needs a certificate to exchange information online securely, turn on the security inherent in existing applications, or authenticate to users, computers, VPN, the Web, or buildings, the next point of determination is: how can I do this cost-effectively without forfeiting quality? The answer is simple: outsource Public Key Infrastructure (PKI). Why should one consider outsourcing rather than deploying an in-house Certification Authority (CA)? An internal CA can be expensive to deploy, operate, and maintain. Organizations require knowledgeable staff, a formal and binding set of policies and procedures, secure facilities, hardware that meets future extensibility requirements, and PKI software to create and manage certificates, to name a few.

Tags: Authentication - Encryption, Security Administration		   
whitepaper Sub-Prime PKI: Attacking Extended Validation SSL2009-07-01 Black Hat
  One of the attributes that the paper discusses is the type of SSL certificate presented by a web server when negotiating a secure connection. Modern web browsers support both Domain Validated (DV) and Extended Validation (EV) SSL certificates. EV SSL certificates were created to combat phishing and other web based spoofing attacks which succeed in spite of the DV SSL model for web site identification. The EV SSL model improves upon the DV model in two ways. First, certificate authorities enforce a more thorough off-line validation process in order to more accurately identify the agent requesting the certificate as the owner of the domain which the certificate is for.

Tags: Authentication - Encryption		   
whitepaper PKI and UDDI Based Trust Centre: An Attempt to Improve Web Service Security2009-06-29 University of Sfax
  Nowadays Internet becomes the most used tool for the ever increasing amount of various transactions between institutions, organizations and more generally between clients and providers. Conducted studies and experiments showed that it is more convenient to provide and achieve these transactions as Web Services (WS) to guarantee their flexibility and their reuse. So far these services and the corresponding providers' URLs are advertised on specific UDDIs (Universal Description, Discovery and Integration). As such, after finding the requested service any given client contacts the right provider to negotiate the service access procedure. These first contacts between clients and providers are usually and commonly not protected (Encrypted) yielding enough room for Hackers to intrude into these unprotected messages.

Tags: Security Administration, Internet and Web		   
whitepaper CHA Partners With GlobalSign to Improve Efficiency of Document Delivery With PDF Digital Signatures2009-06-25 GlobalSign & GMO Internet
  CHA is a highly diversified, full service engineering firm providing planning and design services in the fields of industrial, power supply and distribution, communications infrastructure, structural, electrical, etc. The firm employs over 700 staff in 25 offices throughout the US. CHA determined they needed to automate existing work flow. As an authorized participant in Adobe's Certified Document Services (CDS) program, GlobalSign's DocumentSign solution assisted CHA by providing them with access to digital signatures using Adobe Acrobat.

Tags: Authentication - Encryption		   
whitepaper Confidentiality of Electronic Medical Files in Promedico ASP Guaranteed by DIGIPASS2009-06-23 VASCO Data Security
  Promedico ICT Ltd., independent since 2001is housed in Nieuwegein (The Netherlands). The company employs 40 people to develop and support its products, among which Promedico ASP. The challenge was to access that Promedico ASP must be secured without needing to install additional soft- and hardware in the GP's practice. Patients' medical files should be accessible for authorized at any given time and location. Security standards must comply with local legislation. Access to the patients' medical files in Promedico is secured by VASCO's DIGIPASS 300 in combination with VACMAN Controller. DIGIPASS 300 has an e-signature functionality allowing GPs to sign their messages and update their patients' records in a secure way.

Tags: Authentication - Encryption		   
whitepaper CoSign Digital Signatures for SaaS Applications: Increasing Value and Collaboration2009-06-23 ARX
  In many SaaS applications there is a need to regularly complete various documentation, forms, and transactions that also require approvals in the form of an electronic signature. In addition, the electronic records created must be verified and trusted by any recipient around the world - this means parties inside a collaborative network as well as those outside require a trusted document exchange and/or electronic submission. Standards-based (PKI) digital signatures are the only form of electronic signatures that truly satisfy the signing and verification needs of a distributed collaborative network supported by a SaaS.

Tags: Security Administration, Authentication - Encryption		   
whitepaper CoSign Digital Signatures Keep Your Engineering Operations Moving2009-06-23 ARX
  From design through project completion, engineers no longer need to print a hard copy original, physically route it to get the required signatures and professional stamps, and then scan into an electronic form. By replacing traditional ink signatures and stamps, CoSign fully automates processes, increases operational efficiencies, and keeps business running smoothly, at a low Total Cost of Ownership (TCO).

Tags: Authentication - Encryption, IT Budgeting		   
whitepaper CoSign Digital Signatures and HIPAA2009-06-20 ARX
  HIPAA (Health Insurance Portability and Accountability Act of 19961) is a set of regulations developed by various government agencies and members of the health industry. It's designed to protect patient rights, and simplify the process of passing authorized information from one approved industry entity to another. HIPAA contains a set of standards to be used by all agents of the industry with regard to how the information is transferred and protected. This paper discusses the three main provisions of this Act and the role ARX's CoSign digital signature solution plays with regards to compliance.

Tags: Authentication - Encryption, Regulatory Compliance		   
whitepaper Trend Micro Email Encryption2009-06-17 Trend Micro
  Take this tour of our Email Encryption demo, and learn:
  • Why you need Email Encryption
  • The evolution of Email Encryption
  • Trend Micro's current solutions
  • Technical Details


Tags: Intrusion - Tampering, Authentication - Encryption, Internet and Web		   
whitepaper EMAIL CONFIDENTIALITY AND THE LAW: A SURVEY OF U.S. LEGISLATION ON EMAIL ENCRYPTION2009-06-17 Trend Micro
  Whether absolutely required by some statutes or simply suggested by other laws, proper encryption of email is unavoidably something that companies handling personal, financial, or medical data must now consider and in many instances implement. Read this survey of the U.S. Legislation on Email Encryption today to learn about the laws and statutes requiring email encryption.

Tags: Security Administration, Authentication - Encryption, Internet and Web, Security Administration