Catalog
CREDENTIAL MANAGEMENT
Centralized management and control of electronic signature certificates
International novelty
Technology developed by the R+D+i Department of ANF Certification Authority.
ANF Certification Authority's credential management platform is the most advanced in the market, incorporating exclusive elements (patents pending) that make it unique in its kind:
- It manages certificates without the need to store them. Allows remote administration, the platform can be installed under the exclusive custody of your organization.
It does not require external installation of certificates.
- Guarantees interoperability with all types of media: certificates integrated in secure signature creation devices (QSCD), HSM (Hardware Security Module) tokens, software (PFX/PKCS#12), and certificates in remote signature servers.
Technology audited in accordance with Regulation (UE) 910/2014, Spanish Law on Electronic Signature, and legislation on data protection (RGPD and LOPD), has a Data Protection Impact Assessment.
Control of your company's certificates
Centralizes the lifecycle of all certificates linked to an organization. Your organization will have complete autonomy to order:
- Emission.
- Suspension.
- Renewal.
- Revocation.
- Alerts in case of upcoming expiration.
- Automatic reissuance of certificates within 15 days of expiration.
Ability and total autonomy to create usage policies:
- Configure from which IPs can be used.
- Establish timetables and days of use.
- Determine on which terminals they are functional.
- Establish allowed URLs, including authorized pages (limited proxy).
- Indicate authorized software applications, and other specifications that may be of interest to you
- other specifications that may be of interest to you...
Ability and full autonomy to create security policy:
- Require authentication with Two Factor Authentication via:
- SMS
- Instant messaging
- Logical token
- Usage audit:
- Usage log.
- Logging of unauthorized access attempts.
- Secure remote destruction of certificates.
- Even if the certificates are installed on tokens or computer terminals to guarantee the non-repudiation attribute, you can manage the entire life cycle remotely and instantaneously.
- It makes any misuse impossible.
- Impossibility of access to documents signed by certificates. Other platforms need to store the certificates. (although this service is restricted to PCSCs).
No integration required, it is transparent to users:
- Your organization will have an intuitive administration console. No specific knowledge required.
- Your organization does not need to install any application.
- Users do not need to install plug-ins or browser extensions. The system is totally transparent to them.
100% compatible with all corporate solutions, regardless of programming language or commercial or customized solution.
Differences with other solutions on the market
Functionality | Other platforms | ANF Certification Authority | |
---|---|---|---|
Implementation | No Plugin or Extensions to install | ❌ | ✅ |
Does not require certificate custody | ❌ | ✅ | |
Does not require API implementation in organization's systems to be used. | ❌ | ✅ | |
Interoperability | Compatible with all types of tokens and certificates on signature server | ❌ | ✅ |
100% compatible with browsers and AAPP platforms. | ❌ | ✅ | |
System compatible with Distributed Certificate Platform | ❌ | ✅ | |
Autonomy | Credential platform independent of the centralized platform | ❌ | ✅ |
Autonomy of the organization in the administration of credentials | ❌ | ✅ | |
Customizable | Certificates can be stored in a single repository | ❌ | ✅ |
Credential Platform can be in SaaS client service | ✅ | ✅ | |
Certificates can be hosted on Centralized Platform without transport | ✅ | ✅ | |
Regulatory compliance | The centralized platform is audited with QSCD device | ❌ | ✅ |
LFE, ISO 27001, ENS, RGPD, LOPD. | ❌ | ✅ | |
Monitoring and Control | Allows the establishment of usage policies | ✅ | ✅ |
In centralized certificates (optional) possibility of certificate recovery | ✅ | ✅ | |
Complete remote lifecycle control (no need for certificate safekeeping) | ❌ | ✅ | |
Auditing of usage and attempted unauthorized accesses | ✅ | ✅ | |
Create expiration alerts to keep track of SSL EV Secure Server (QWSC) certificates With automatic renewal capability 15 days prior to expiration. | ❌ | ✅ | |
Creates expiration alerts to keep track E-Stamps. With automatic renewal capability 15 days prior to expiration. | ❌ | ✅ | Creates expiration alerts to keep track PSD2 certificates in all its modalities. With automatic renewal capability 15 days prior to expiration. | ❌ | ✅ |
Security | Allows to set Security Policy | ✅ | ✅ |
Ability to customize new security parameters | ❌ | ✅ | |
2FA in SMS, instant messaging, logical token. | ❌ | ✅ | |
PIN in exclusive possession of the user (non-repudiation guarantee) | ❌ | ✅ | |
Life Cycle Management | Issuance processing | ❌ | ✅ |
Revocation / Destruction | ✅ | ✅ | |
Renewal | ✅ | ✅ | |
Suspension | ✅ | ✅ | |
Usability | Includes long-standing electronic signature capability. | ❌ | ✅ |
Intuitive and transparent system for the user | ✅ | ✅ | |
Multi-language | ❌ | ✅ |