Keyon / MS-CAPI Bridge for Mozilla NSS (Network Security Services) is a Dynamic Link Library (DLL), which provides access to the credentials in the Microsoft Certificate Store over virtual tokens using the PKCS#11 (Cryptoki) API (application programming interface).
Applications such as Microsoft Firefox can thus use certificates and keys available in the Microsoft Certificate Store and the Microsoft CryptoAPI.
Key Features
While Microsoft provides with the CAPI on Windows a standard interface for cryptographic operations, Java brings, due to platform independency, its own solution. Keyon combines with the token framework different standards and provides a simple and cost-effective integration of Microsoft-specific security functions as well as hardware tokens into your infrastructure.
Under Microsoft Windows, CAPI is the standard interface for all cryptographic functions. Standard applications are built on this API such as Internet Explorer or Outlook. With the JACAPI Provider by Keyon, Java applications can, for the first time, access user specific X.509 certificates on Windows. Java applications can make use of Microsoft Windows features such as single sign-on (SSO).
PKCS#11 is a standardized interface for cryptographic operations on hardware tokens (smart cards, USB tokens, HSM) and is provided by most manufacturers as native library for various platforms. With Keyon’s JAP11 Provider, all PKCS#11 compatible hardware token can be used simply and transparently in Java applications.
The concurrent support of software and hardware token in Java involves various problems. Individual JCE providers support only software token, others only hardware token. JAPROX provides transparent parallel operation of software and hardware token in Java application without adjustment of the corresponding source code.
keyon AG
Schlüsselstrasse 6
CH-8645 Jona
Switzerland
Tel +41 55 220 64 00
Fax +41 55 220 64 01
info@keyon.ch