Security Builder GSE
FIPS 140-2 Validated cryptographic toolkit
Build trusted, government-approved security into your products: Security Builder® GSE™ enables you to build client- and server-side applications that require a FIPS 140-2 Validated level 1 cryptographic module without having to submit your application through the lengthy and costly FIPS approval process.
Security Builder GSE acts as a software cryptographic provider within the Certicom® Security Architecture™ – a comprehensive, cross-platform solution designed to allow developers to quickly and cost-effectively embed security into applications and across multiple families and generations of devices.
Security Builder GSE can be found in applications used by all levels of government and industry. Read more in the government solution section.
Review the features and platform support for Security Builder GSE. Not sure what toolkit to use? Cross-reference our toolkits by application or by algorithm.
Benefits
Meets government security requirements
FIPS 140-2 validation is considered the benchmark for security by many governments, and is required for security products sold to US government departments. Security Builder GSE includes a FIPS 140-2 Validated cryptographic module. By building on Security Builder GSE, you can avoid the lengthy and expensive FIPS-approval process and get your product to your government market more quickly.
Comprehensive security solution
Security Builder GSE helps you achieve end-to-end FIPS 140-2 security using a single, common API. Security Builder GSE provides the module that allows Security Builder protocol toolkits to run in FIPS approved mode, further extending the range of applications that can be secured.
Wide platform support
Security Builder GSE has been validated on Windows 98/Windows CE (Certificate #316) , and Palm (Certificate #351) operating systems, and is pending validation on over 10 server-side platforms, including Linux, HP-UX and AIX.
Ready for the future
ECC is quickly being adopted into government standards. Security Builder GSE for server-side is the only toolkit to support ECSDA, ECDH and ECMQV, three ECC-based algorithms specified in FIPS and Special Publications.
Security Builder NSE
cryptographic toolkit for national security information
Build trusted security for mission-critical national security applications into your products: Security Builder® NSE™ enables organizations to build applications that meet the field-of-use guidelines set out by the National Security Agency (NSA) to protect mission-critical national security information.
The Security Builder NSE toolkit covers the technology that was part of the 26 patents licensed by the NSA plus optimized implementations that enable developers to meet the NSA field-of-use guidelines and FIPS 140-2 validation requirements.
The toolkit, which is available in C code, includes:
» Elliptic curve digital signature algorithm (ECDSA) for digital signatures;
» Elliptic curve Menezes-Qu-Vanstone (ECMQV) for key agreement and transport;
» SHA-1, SHA-2 (also FIPS-validated) for hashing;
» Elliptic curve support for SMIME, TLS, IKE
» Advanced encryption standard (AES) for strong encryption;
» Random number generation (RNG);
» Point compression for size and performance efficiencies; and
» Support for Windows and Linux platforms.
Security Builder NSE is part of the Certicom® Security Architecture™, which unifies all of Certicom’s existing toolkits across a single API and enables developers to quickly migrate their applications to whichever cryptographic module is required.
Benefits
» Proven implementation
» Faster NSA approvals
» Faster FIPS 140-2 validation
» Highly optimized for size and performance
» Includes implementation patents not licensed by the NSA
|
