Management of a Sovereign
Server and the extended Sovereign Trust Zone is accomplished
within the web-based Sovereign Administration area of the server. The Sovereign
Administration area consists of intuitive web-based policy
driven management tools. The management tools are available only to
authenticated administrative users and provide comprehensive policy,
administrative and reporting functions.
Sovereign Server™ Administration
Pro
Provisions Sovereign Trust Point Client based on
risk manageable policies set by business processes.
er.
Hol Holds public keys generated by client in central registration in
record associated with end user.
Dynamically provisions public keys to end users to be used for:
Provides admin functionality including:
-
Account creation and deletion
-
Comprehensive traffic reporting
-
Policy management by domain, user, application and protocol
-
Flexible Enrollment restrictions and guidelines
-
Key generation, publishing and renewal
Sovereign Administration area enables business process owners and/or
system analysts to rapidly design, deploy, modify and manage
security in multiple business process applications and transactions.
The business process owner defines business rules and risk
management policies including enrollment policy, authentication, and
access rules via the web-based administration interface. When
a users authenticates with the Sovereign Server and attempts to use
an application or business process the output communicates each
users unique security rights and business rules via Sovereign
Servers online processes.
| |
| |
|
 |
| |
 Dynamically provisions
public keys to end users and network devices to be used for: |
| |
encrypting data, (email or
transactions)
digitally signing data
verifying digital signatures
controlling access to web-based functionality |
|
|
|
|
|
|
Provides admin
functionality including: |
|
|
Account
creation and deletion
Comprehensive traffic reporting
Policy management by domain, user, application and protocol
Flexible Enrollment restrictions and guidelines
Key generation, publishing and renewal
Template
management and creation: This utility is used to enable web
forms
on Internet web-pages (html and xml) to communicate with the
Zendit Trust Agents and allow digital signing, encryption and
decryption by vendors, partners and customers.
Revocation: Web-based and intuitive.
Revocation is based on your policies and is simple because you
control the public keys. A synchronization mechanism is included
to communicate in real-time any changes made to your shared
public key directories.
Interim Passwords or Keys: This utility is used with the
intranet enrollment pages or can be automated to generate
interim key pairs and/or passwords at the server end for those
invited into your trust domain. The generated keys are stored in
the in the database until the invited end user enrolls in the
system. The password is given to the “host” (an automated
server, or the employer who invited the user to join).
Authentication can be achieved via database checking or via
telephone. Once authenticated the user downloads the trust
client and interim private key, (or generates their own) the
public key is then sent to the Public Key Directory and
authenticated.
|
|
|
|
|
|
|
Policy Management: |
| |
Companies can
further institute processes in user enrollment that provides
additional risk management and satisfy legal requirements to
enhance the enforceability of the transaction.
|
|
|
|
|
