Public Key Infrastructure

Codegic provides expert services on Public Key Infrastructure and related techologies. We have practical development experience in the following PKI domains:

  • Digital Certificates
  • Digital Signatures
  • Timestamping, OCSP, SCEP
  • CA/B Forum, Common Criteria
  • PKCS standards, Algorithms
  • WebTrust, SmartCard, HSM
  • Certification Authorities
  • Post Quantum Cryptography

PKI Server Intro Image

Technologies

We work with multiple technologies to support your security needs.

Crypto

Cryptography is at the core of what we develop. Here are some of the trusted crypto libraries we work with:

  • Bouncy Castle
  • IAIK
  • OpenSSL
  • Apple CryptoKit
  • WebCrypto
  • KeyChain (Android, iOS)

Back-end

Back end technologies allow developing the core engine and business logic for secure business applications.

  • Java
  • .NET
  • PHP
  • C++
  • Objective C, Swift
  • Node.js

Cloud

Be it on the cloud or on-premise we work alike.

  • Azure
  • Google
  • Amazon AWS
  • IBM
  • Oracle
  • Alibaba Cloud

Expert Details

Digital Certificates

  • X509 v3 certificates

CAs

  • Microsoft CA
  • ADSS Server
  • Dogtag CA
  • RedHat CA

COCSP standards

  • RFC 2560
  • RFC 6960

CA/B forum

  • SSL
  • EVSSL
  • EV CodeSign

Timestamping

  • RFC 3161
  • Microsoft Authenticode
  • RFC 5816
  • ETSI TS 101 861

Digital Signatures

  • PDF Signing
    • Basic
    • Advanced
    • AATL
  • XAdES
    • XML DSig
    • XAdES-EPES
    • XAdES2-BES
    • XAdES-T
    • XAdES-C
    • XAdES-X (Type 2)
    • XAdES-X-L
    • XAdES-A
  • PAdES
    • Visible Signatures, Invisible Signatures
    • Certify (Author) Signatures
    • Approval Signatures
    • Adobe® CDS Signatures
    • PAdES Part 2 (Basic)
    • PAdES Part 3 (Enhanced)
    • PAdES Part 4 (Long term)
  • Master in Digital Marketing
    • CMS/PKCS#7/ and S/MIME
    • CAdES-BES
    • CAdES-EPES
    • CAdES-T
    • CAdES-C
    • CAdES-X-L
    • CAdES-A
  • ETSI TS 102 778
  • OASIS DSS

PKCS standards

  • PKCS#1
  • PKCS#7
  • PKCS#9
  • PKCS#10
  • PKCS#11
  • PKCS#12

Misc standards

  • eIDAS
  • CAPI/CNG integrations
  • SCEP
  • CWA 14167-1
  • HMAC
  • FIPS 201
  • NTP
  • SNMP
  • SCVP

Common Criteria

  • EN 419 241-2

HSM / Smart Cards

  • Safenet
  • Thales
  • Azure Key Vault
  • Amazon AWS Cloud HSM
  • Utimaco (CryptoServer CP5)

Algorithms

  • RSA – 2048, 4096, 8192
  • ECDSA – 256, 384, 521
  • Hashing – SHA1, SHA-256, SHA-384, SHA-512, RIPEMD

Words from Client

Leading companies rely on us for their PKI and digital signature needs

Our team was not able to handle the AATL needs for our Esign Service, so we researched and found Codegic. They provided a solution that worked in our workflow, and also put us in touch with an AATL certificate provider that was far less expensive than what we had been seeing. Their skills and expertise were obvious regarding AATL and PKI & literally, the project took less than 4 weeks. It was impressive. We would not hesitate to use them again.

Aaron Jones Founder, SignFast.com