More than just PKI...
ReTrust.Me acts as a hub to certify identities and documents within your organization, using various standards, widely interoperable.
Very easy to use, its GUI will let you manage identity lifecycle easily.
ReTrust.Me also sends reminder e-mails when needed (e.g. certificate about to expire).
Its Enrollment Client will allow you to easily enroll Smart Card or Tokens, using an easy to use Windows GUI.
It will manage and let you issue X.509 certificates, MRTD signed objects,
RFC 3161 signed timestamps, PKCS#12 secure credential containers, ...
...Standards compliant...
ReTrust.Me is compliant with the following standards:
- X.509v3
- CRLv2
- REST/JSON
- ICAO 9303 for MRTD issuance
- SCEP as per draft nourse 23, CA mode
- ACME v1 to build your private Let's Encrypt!
- PKCS#10 for CSR submission
- PKCS#11 for HSM support
- PKCS#12 for secure container issuance
- Microsoft CAPI and Minidriver (Windows Vista+ and .NET 4.6.2+) for SmartCard/Token/VSC enrollment
- Microsoft SmartCard Logon architecture support (Workstations and Domain Controllers)
- RFC 5280
- RFC 3161
- FIPS 140-2 Level 1 for user key generation (Centralized mode)
- Up to FIPS 140-2 Level 3 for other cryptographic tasks (depending on HSM)
- RSA 2048-4096
- SHA-256
- ECDSA with prime256v1
- GOST R 34.10 2001 / GOST R 34.11 94
- SMTP and MIME for reminder notifications and other emails
Got a headache? Don't worry, all this is done transparently for you!
...And easy to setup and configure!
ReTrust.Me offers you a comprehensive point-and-click configuration interface and a set of tools to ease its deployment.
Easy to use and usable with default settings. So if have any doubt, just don't touch the configuration!
So... convinced?
Still not?
Now the best part: It's FREE (and Open Source, and GPL licensed).
So, what are you waiting for?
Download It! and install it thanks to our
Documentation.
ReTrust.Me Architecture
Below is the architecture of ReTrust.Me, and how it is integrated within the Information System.