|
E-Key MP System API (VB/VB.net/SQL)
One-Time
Key Distribution
Certificates and PPK Set Storage Library
Virtual
Authentication Tokens
Access
Rights and Access Tickets Storage Library
Set
of easy to use APIs for:
·
Key
Distribution
·
One Time or
Periodic Keys
·
2-Factor
Authentication Tokens
·
Secret Key and PPK
Set Generations
·
Storage Library for
Keys and Security Rights
·
Storage Library for
Digital Credentials and Application Tickets.
|
Suggested
Applications:
·
Remote System
Logins
·
Document
Authentication
·
Application Tickets
(Credentials and Access Rights)
·
Transaction
Verifications (One-time or Periodic Key)
·
Digital
Credentials
Storage
·
Secure Custom
End-Entity Certificates
|
MP
System is a unique resource, specifically, a set of easy to use APIs for Key
Distribution and Key Generations.
The system could be used for remote
system logins, document authentication, one-time transaction verifications and other applications that
need secure keys or passwords library. Certificates attached to accounts
could be used to encrypt files before being sent to the account holders (optional use of
PKCS#12 standard).
Custom versions of this system support PKI
systems
System Flow
The system is composed of several dll’s and program
files. The system generates keys
(Secret Keys/Passwords or Public/Private Key pairs), which are sent to the
“customers” in a form of an encrypted binary file. Each generation session is attached to a
selected account/customer. Each
file can be “opened” using a “Master Key”.
The keys file is encrypted using different encryption methods,
selectable by the users. Customer’s
Public Key attached to accounts can be used to encrypt the keys files before
being sent to the account holders (customers). Each record can contains the key (or key
set), serial number, hashing method to be used, validity dates, and security rights
assigned (ticket rights) assigned to this key.
On the customer’s side a utility is installed in
a form of dll, program file, or activeX control. The customers could run a utility
that displays the next password/key to be used. Challenge response module could also be
part of this system.
Other programs could interface with this file to get keys (secret key or PPK) and the
relevant data connected to the key.
To access any key the master password need to be keyed in or sent to the
dll, which in turn delivers the key and other data. The
customer can have access to multiple keys files based on the specific
application the file is designed to service.
The system uses different encryption methods and hashing schemes for key
set generation. The set of generated Encrypted Keys could be
downloaded periodically and stored on local PC for integration with
specialized applications. The downloaded Keys are decrypted for incremental
usage by using the system API calls.
Sample API
Calls
The
API dll is used to create programs to interface with any application program.
The following are several API calls that can be used:
1.
Check_Key(KeyID As Long,
SourceFile As String, Mpass As String) As
String
This function
returns an unencrypted key from the keys file.
2.
Check_Hash(SourceFile As String,
Mpass As String) As Integer
This function returns the hashing method used for data
encryption.
3.
GetHash(KeyID As Long, SourceFile As
String, Mpass As String, StrToHash As String) As
String
This function returns an encrypted hash string of the StrToHash
variable.
4. Random Key/Number Generators
RandomPassword(password length as integer)
RandomString(string length as integer)
RandomRumber(lower as double, upper as double, seed as
double)
Used to generate random keys by seeding it with
a particular number, which users can specify.
5. GetCryptObject(iMethod
As Integer)
This function let you select the encryption object to be used
(Twofish, Gost, Skipjack, MS CryptAPI, DS2, Rijndael and others)
 
 | 
