Product Overview

The cloud password service platform (also known as the unified password service platform) is a new password function delivery model formed by the deep integration of cloud computing technology with password technologies such as identity authentication, authorized access, transmission encryption, and storage encryption. The platform adopts cloud computing technology architecture to integrate password products, password usage policies, password service interfaces, and service processes, combining password system design, deployment, operation and maintenance, management, billing, etc. into one service to solve users' password application needs.

Features

Support multiple password algorithms:Support national encryption algorithms (SM1, SM2, SM3, SM4, SM9) and internationally recognized algorithms (DES, AES, SHA1, SHA256, RSA, ECC, etc.).

Supporting the application of blockchain technology:It can provide basic cryptographic algorithm services for user registration, real name authentication, transaction creation, transaction verification, block consensus, block confirmation and synchronization, block query and other links in blockchain transactions, effectively supporting the safe and reliable operation of the cryptographic operating environment of blockchain systems using PKI cryptographic system or identification cryptographic system.

Supports multiple operating systems:The server system supports operating systems such as Windows series, Linux series, Oracle Solaris, AIX, HP-UX, etc.

Standard interface:The API interface of the password machine complies with the standard requirements of GM/T 0018-2012 "Application Interface Specification for Password Devices" and has good universality.

Three layer key structure:Adopting a three-layer key protection structure of "system protection key user key pair session key" to ensure the security of user keys and application systems.

Secure key storage:Ensure that the key does not appear in plaintext outside the device at any time, and that the key backup file is protected by the master key. When the device chassis is illegally opened, the stored keys are immediately destroyed.

Security Strategy:Adopting IP address based whitelist access control and key to key one-to-one authorization code protection mechanism.

典型部署