New white paper on post-quantum migration

New white paper on post-quantum migration

In ten years, there will be quantum computers that can crack RSA and other crypto algorithms. This is the worst-case assumption of the German Federal Office for Information Security (BSI), which is why there will soon be regulations requiring security-critical IT systems to migrate to post-quantum processes. But how does a company or public authority go about switching to the new algorithms as smoothly as possible? A new “PQC Migration Guide” from Eviden provides the answer. The 16-page guide covers crypto agility, crypto inventories, Mosca’s theorem, and numerous other topics that play a role in post-quantum migration. The “PQC Migration Guide” is available for free download.

PQC Migration Guide for downloadhttps://www.cryptovision.com/wp-content/uploads/2023/05/EVIDEN-PQC-Migration-Guide.pdf

Cryptovision receives Common Criteria certificate from BSI

Cryptovision receives Common Criteria certificate from BSI

This year cryptovision was again present at the RSA conference in San Francisco, one of the world’s most important events for IT security. And of course cryptovision participated again in the traditional evening reception with the German consul. This time, the venue was a club not far from the famous Transamerica Pyramid, hosted by the industry association TeleTrusT. During this ceremony cryptovision received a Common Criteria certificate for the Jacolyn CSP (version 2) from the hands of BSI department head Dr. Günther Welsch. The Jacolyn CSP is a Cryptographic Service Provider (CSP) that can be used as a cryptographic security core for numerous applications, including the cryptovision TSE v2 for cash registers. The architecture of this product is in line with the CSP concept developed by the BSI, which provides for the encapsulation of crypto functions and enables easy integration without specialized cryptographic knowledge. By certifying the Jacolyn CSP, cryptovision strengthens its position as a provider of secure and easy-to-use crypto solutions.

Jacolyn CSP website: https://www.cryptovision.com/en/products/secure-id-applications/jacolyn-csp/

Chiasmus replacement with GreenShield: VS-NfD approval now also for password-based file encryption

Chiasmus replacement with GreenShield: VS-NfD approval now also for password-based file encryption

Handling VS-NfD classified information becomes much more convenient if you can encrypt it as a file or send it securely by e-mail. However, government agencies and companies may only use products with government VS-NfD approval for this purpose. GreenShield from cryptovision is one of the few solutions that has already met this requirement for several years.

The GreenShield offering consists of GreenShield Mail (end-to-end email encryption) and GreenShield File (file encryption). GreenShield first received approval for the processing and transmission of VS- NfD (as well as EU and NATO restricted) classified information back in December 2018, and in March of this year, the German Federal Office for Information Security (BSI) has now also approved the current version with numerous updates.

Password-based, symmetric file encryption

One application widely used by public authorities and companies is file encryption: until now, the file encryption program Chiasmus has been used to encrypt and pass on VS-NfD-rated information. However, the approval of this software expires at the end of 2021 and will not be renewed. GreenShield is ideally suited to replace Chiasmus. In addition to asymmetric encryption and decryption using key pairs (consisting of a public and a private key), the current GreenShield version also supports symmetric encryption for file encryption. In this variant, the sender and receiver do not exchange public keys, but agree on a password.

Virtual Desktop support

GreenShield scores not only with high usability, but also with support for various smart cards. In the current version, the approval of GreenShield has also been extended to server systems and thus also supports Virtual Desktop infrastructures. Integration into various existing VS infrastructures is thus also possible for centralized systems.

HCL Notes® 11

GreenShield Mail is the only VS-NfD approved email encryption solution for HCL Notes® on the German market. The current version supports HCL Notes ®11 in addition to the aging Notes 8 and 9 client. Last but not least, the solution’s multi-client capability is unique: it supports both Microsoft Outlook and HCL Notes on the same device. Thus, only GreenShield Mail enables a smooth migration from Notes to Outlook.

More information: https://www.cryptovision.com/en/products/security-applications/greenshield/

 

 

ePasslet Suite soon available on Infineon’s SECORA ID

ePasslet Suite soon available on Infineon’s SECORA ID

ePasslet Suite v3 – cryptovision’s Java card framework for electronic ID documents – will be available in 2020 on SECORA™ ID, Infineon’s new Java card operating system. Using ePasslet Suite, users of SECORA™ ID can easily and flexibly implement numerous eID functions. SECORA™ ID is the newest member of Infineon’s established SECORA family. SECORA™ ID is a smart card operating system based on the widely used Java Card standard. It was specifically developed as a platform for electronic ID cards.

SECORA™ ID is being certified according to Common Criteria EAL 6+ and EMVCo. In addition to Infineon’s in-house applet collection, SECORA™ ID also supports the proven ePasslet Suite by cryptovision. This solution considerably expands the functionality of SECORA™ ID by offering about a dozen additional applications. All common eID documents can be implemented this way, with a wide variety of configuration options as well as adaptations to national and project-specific requirements being possible – including electronic identity documents with several applications. The functionality includes the addition of applications on documents already issued. Cryptovision’s managing director Markus Hoffmeister: “We are delighted that Infineon customers can now use our suite on this new platform. The partnership with Infineon is another important milestone on our successful path in the eID market”. With Infineon’s SECORA™ ID as additional platform for ePasslet Suite, cryptovision gains access to another huge market: 70 percent of the worldwide population use identification documents based on Infineon’s security chips. To the Infineon press release

 

 

Klaus Schmeh in panel discussion with Whitfield Diffie

Klaus Schmeh in panel discussion with Whitfield Diffie

For the sixth time in a row cryptovision employee Klaus Schmeh was a speaker at the renowned NSA Symposium on Cryptologic History in Washington, D.C. This event, organized by the NSA, brought together 350 experts from all over the world in mid-October, including numerous NSA employees. One of Klaus’ two lectures (on block ciphers) took place within a panel together with three well-known cryptology colleagues. One of them had contacted Schmeh a few weeks before the event and asked if he could participate in the panel: Whitfield Diffe, the co-inventor of the Diffie-Hellman key exchange and co-founder of asymmetric cryptography – and thus one of the most important computer scientists of our time. Klaus, of course, agreed, and the result was a prominent panel with exciting lectures and expert discussions, which was one of the highlights of the symposium.