User:Mwahaj/Ascertia

Ascertia Limited is an independent software vendor that focuses on providing digital signature creation, verification, time stamping products. Ascertia’s ADSS Server product offers security features including signing, verification, validation, timestamping, encryption, decryption, certification, CA  and CRL Management and archive services. Local desktop signing and verification including long-term signatures are handled by the ADSS Go>Sign Applet.

History

 * 2001: Ascertia founded within the University of London Royal Holloway incubator
 * 2002: Ascertia releases an advanced OCSP Responder “TrustFinder OCSP” launched and first licenses are sold to EDS in Belgium. ARP OCSP Client software launched.
 * 2004: Ascertia releases PDF Sign&Seal, a desktop product that can digitally sign PDFs
 * 2005: Ascertia releases ADSS Server v1 to digitally sign documents passed via an HTTP service interface. PDF Sign&Seal v2 is released.
 * 2006: Ascertia releases ADSS Server v2 to provide digital signature verification services and this product is selected by DNV to power their Global Validation Service. OCSP Monitor v1 is released launched to constantly monitor the health of OCSP VA Responders
 * 2007: Ascertia releases ADSS Server v3 to provide digital signature creation and verification services including a trust rating scheme . RFC 2560 OCSP Responder service and RFC 3161 TSA service modules are also added
 * 2008: ADSS Server v3.4 supports a range of ETSI XAdES and CAdES signature types including –A and –EPES formats. CRL Monitor is released to provide advanced monitoring of multiple CA CRLs. PDF Sign&Seal v4 is released.
 * 2009: Ascertia releases ADSS Server v4.0, designed to meet the ETSI CWA 14167-1 (Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures - Part 1: System Security Requirements). OASIS DSS and DSS-X support is now provided and new IETF LTANS and W3C XKMSDPV service modules are added.
 * 2010: Ascertia releases ADSS Server v4.2, with enhancements to its OASIS DSS signing, OASIS DSS-X verification, RFC 3161 timestamp authority, RFC2560 OCSP VA, RFC 5055 SCVP VA, W3C XKMSVA, IETF LTANS Archive and RFC 2797 CMC CA service modules. PEPPOL compliance and signature trust ratings are also supported.

Software Integrations
Ascertia’s products allow integration using high level API and HTTP/S services. They can be used in business scenarios including (a) server-based centralised bulk signing of documents, such as e-invoices, (b) server-based user signing of workflow documents, such as project documents, (c) client-side signing using our web-based ADSS Go>Sign Applet accessing local or roamed credentials, such as document management and collaboration solutions, (d) using desktop products for off-line signing and finally (e) being used within managed services for effective verification, validation, timestamping, certification and archive services. Wareen County (NJ) used ADSS with alfresco to secure their Document Management

Server Products
ADSS Server A server product offering a J2EE architecture to provide digital signature creation, signature verification, certificate validation, timestamping, evidence archiving and certificate issuing solution. The list below shows the common variants controlled by its digitally signed XML license file

ADSS PDF Server Signing and verification functionality for PDFs

ADSS XML Server Signing and verification functionality for XML data

ADSS PKCS#7 Server Signing and verification functionality for PKCS#7, CMS and S/MIME data

ADSS TSA Server TSA and/or front-end TSA management functionality

ADSS OCSP Server OCSP Validation Authority and CRL Monitoring functionality

ADSS SCVP Server SCVP validation Authority and CRL Monitoring functionality

ADSS XKMS Server XKMS validation Authority and CRL Monitoring functionality

ADSS Archive Server IETF draft LTANS Archiving Authority functionality

ADSS CA Server RFC 2797 Certification Authority functionality using CMC protocols

Ascertia Docs web-application that offers document sign-off and approval by one or more people in informal internal or external workflows.

Desktop Products
PDF Sign&Seal A Windows desktop product to view and sign PDF documents.

File Sign&Seal A PKCS#7 product that compresses one or more files and then allows multiple signatures

Test and Monitoring Tools

CRL Monitor Monitoring of CRL resources for CAs and assures service users of the availability, freshness and validity

OCSP Monitor A Server or desktop product that can check OCSP VAs for compliance with validation policy performance

OCSP Client Tool A test tool for IT security operations staff when checking one or more OCSP VAs for correct configuration

OCSP Crusher A test tool that for IT security operations staff to check OCSP VAs for acceptable performance

TSA Crusher A test tool for IT security operations staff to check a TSA for acceptable performance

Solutions
Ascertia Docs A collaborating website to get digitally sign documents

GlobalTrustFinder A demo site to demonstrate different PKI services i.e. OCSP, Timestamping, Digital Signature (PDF, XML, PKCS#7, CMS, XAdEs, CAdES, Smime), Verification, Certification

Partners

 * Safenet
 * Identrust
 * NTC
 * Gridsure
 * Result
 * Lawtrust
 * Adobe
 * GlobalSign
 * DigitalSign

Certifications

 * JITC
 * Identrust