Security Locking Down ID-Certify Use of Encryption

Use of Encryption

ID-Certify® uses encryption as follows:

• Administrator credentials, with which ID-Certify connects to target systems to list users and ultimately to deactivate accounts and remove group memberships, are encrypted using AES.
• Communication between the main ID-Certify server and ID-Certify proxy servers is via TCP/IP, protected using AES, encrypted using a shared key.
• Communication between the main ID-Certify server and local agents on Unix and OS390/zOS target systems is via TCP/IP, protected using AES, encrypted using a shared key.
• Communication between multiple ID-Certify servers, to replicate data and support high availability and load balancing, is protected using AES, encrypted using a shared key.
• Communication between end users and product administrators and the ID-Certify web user interface is using HTTP over SSL (HTTPS).

© Hitachi ID Systems, Inc. 2008. All rights reserved.