Performance Data

Number of certificates:

• 200 up to 200,000,000

Production speed:

• Without HSM up to 5,000 1024-bits Digi-IDs™/hour
• With HSM up to 10,000 1024-bits Digi-IDs™/hour

Key length:

• Root and Sub-CA 9196-1024 bits
• Digi-IDs™ 1024-2048 bits
• Symmetric Keys 56 to 256 bits

Certificate validity:

• Root CA 1 to 25 years
• Sub-CA 1 to 10 years
• End Entity 1 to 10 years (as per Certificate Policy)

Key storage:

• Root CA Key can be stored off-line, in an encrypted format, within the boundary of an HSM device and protected by several separate Operator Cards that usually are stored securely in multiple offsite safe locations. Other keys, such as Subordinate CA, can also be stored within a boundary of an HSM device and regularly used by the Digi-CA™ PKI System on a day to day basis. Access to these keys can be also protected with multiple Operator cards.

Cryptographic Ciphers:

• AES,
• Blowfish,
• CAST5,
• DES,
• 3DES,
• IDEA,
• RC2,
• RC4,
• RC5
• and RSA

Signature Algorithms:

• MD2,
• MD4,
• MD5,
• MDC2,
• SHA1 (DSSI)
• and RIPEMD-160

Entropy:

• 2127