cryptovision Keymaster is a software component designed for operating a key server within a public key infrastructure (PKI). It facilitates the generation, import, and export of private keys, offering highly configurable support for key recovery, key roaming, and remote operations. This allows for the implementation of diverse security concepts through its robust rights management system. While private keys are typically stored on user devices, Keymaster addresses scenarios requiring central storage, such as key recovery for encrypted data and key roaming for user convenience across multiple devices. It also supports remote key operations for shared private keys, like group mailboxes, where operations are performed on the key server. Keymaster ensures these centrally stored keys are protected, often in conjunction with hardware security modules (HSMs), by providing appropriate access controls and defined processes. The software enhances the practicality and user-friendliness of PKI by offering flexible options for authentication and recovery processes, catering to various security requirements from stringent mutual authentication to more pragmatic administrator-led recovery.

Features & Benefits

• Secure Key Recovery and Roaming: Enables the recovery of lost private keys and allows users to access keys remotely without carrying them.
• Configurable Rights Management: Implements almost any security concept through detailed access control and rights definition.
• Remote Key Operations: Allows crypto operations to be performed on the key server, useful for shared keys.
• Enhanced Usability of PKI: Increases the practicality and user-friendliness of public key infrastructures.