|
Trusted Root |
All CertifyID Classes are Rooted to the OISTE WISeKey Global Root GA CA which is WebTrust Accredited, and is embedded in all most operating systems and browsers.
Each class level exists under a different policy CA, and has different trust assurance ratings.
|
|
Features |
Client Authentication
Secure Email (Digital Signature and Encryption) |
Client Authentication
Secure Email
Certificate replication with Exchange
SSL Certificates (Server Authentication)
Windows SmartCard Logon
File Encryption
|
Customisable according to client needs. Defined per project. |
|
PKI Disclosure |
Enhances security moderately by assuring that the email address in subscriber certificates is accesible by the certificate subscriber.
The CA may be further bound to only issue certificates containing email addresses within the domain owned by the organization.
Businesses are encouraged, but not required, to validate user identities based on organizational records, derived from in-person validation of presented credentials. |
Enables individual certificates to be issued containing email addresses belonging to the organisation’s registered domains.
Enables organizational certificates, especially SSL certificates, to be issued that belong to the organisation’s registered domains. Relying parties can authenticate organizational identities, such as web sites.
Provides increased assurance but is not expected to foolproof. The organization is required to verify individual’s identity against organizational records, or trusted third party databases such as credit bureaus, or national registrars.
|
Provides extremely high trust assurance.
Uses enhanced procedures such as face-to-face verification, which requires physical subscriber presence and presentation of identity credentials before certificate issuance, or other similar procedures.
Enables more features than the advanced level. |
|
Suitable |
Organisations wishing basic email integrity and confidentiality. |
Organizations wishing increased identity assurance, with email integrity and confidentiality, enhanced interoperability with Microsoft Exchange, secure web sites, encryption file system and smart card logon functionalities.
|
Organisations that require a high level of identity assurance and confidentiality. Financial applications, contracts, agreements. Expanded functionality beyond advanced level.
|