PKITrust  

To illuatrate the PKITrust product, Internet Banking is a good example.

From architectural point of view, the solution can be divided into “frontend” and “backend” subsystems. The frontend would include the existing Internet banking system from “Bank” together with an applet developed by MobileTech whereas the backend is PKITrust core system. The Java applet would be downloaded to the user browser for digital signing using the customer digital certificate. Currently, we support the following different brand and version of browser clients:

• Microsoft Internet Explorer 5.0 or later (with 128 bit SSL upgrade loaded), version 6.0 or later is recommended
• Netscape Communicator 4.7 or later
• Mozilla in all versions
• FireFox in all versions

The Java applet is downloaded together with the final confirmation HTML web page which requires the digital signature from the customer. Then, the applet would retrieve the available digital certificates stored within the web browser for user to choose. Upon user entered the protection PIN for the private key inside the chosen digital certificate, the applet would sign the whole HTML form and sent back the result to the Internet banking site.

On the backend side, we would propose to deploy our “PKITrust” solution for digital certificates and signature verification. This would certainly shorten the development time for enhancing the current Internet banking applications to catch time for market. The “PKITrust” is a module for managing digital certificates and verifying signature validity. Internally, it maintains a digital certificates and CRL cache on a LDAP server, which can ensure a stable and persistent performance in verification. It supports multiple CA and CRLs (such as Hongkong Post and DigiSign) simultaneously.