Risk
4/11/2010
08:14 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

TrustPort eSign Pro Extends TrustPort Product Portfolio

Software is for the signing, encrypting and time stamping of electronic documents

Brno, April 8, 2010 " Today marked the release of a new security product called TrustPort eSign Pro. It is compact software which can be used for signing, encrypting and time stamping of electronic documents. Advantages of this product can be appreciated by customers in both the corporate and home segments. Its ease of use is combined with high security, secured by symmetric and asymmetric cryptography. TrustPort is introducing the product to the market at very favorable price conditions, which makes it the number one alternative for credible and discreet exchange of electronic documents.

During normal internet communication the document recipient has no guarantee that the document really comes from that sender and that along the way it has not been altered by anyone. To solve this problem, electronic signature technology was developed. Although electronic signature is not a new technology, its implementation has not yet been widespread. Complexity and cost of available existing software solutions that enable electronic signing is the possible cause of this condition. TrustPort eSign Pro comes as a product, which is ideal for typical users who require reliable, convenient, and an economical solution.

This new solution has not been developed out of nowhere. "This new product is built on proven technology that we have been developing for many years", said Petr Vank, head of development department at TrustPort. "It gives users a number of functions, which are available literally after a few mouse clicks. Signing or encrypting an electronic document can be done by anyone, regardless of the user experience." The documents can be processed individually or collectively simply by highlighting them in the operating system and choosing the corresponding command from the contextual menu.

Quick and simple operation with documents is enabled by the signing and encryption wizard. This useful tool allows users to choose which particular operation they wish to do with the selected files. On offer are signing of documents, encryption of documents, time stamping of documents, and simultaneous signing and encryption. In the case of a received document, it takes care of its decryption and signature verification. Among other interesting options there is also the possibility multiple document signing by several users, or the creation of a signature separate from the document.

"Our new solution is suitable for communication with government authorities, for business correspondence, and even for private communication," states Marcela Parolkov (photo), head of sales department at TrustPort. "It guarantees the authenticity of the documents sent in terms of their authorship, and ensures their confidentiality from unwanted readers. Generally speaking, it enables secure communications in a risky environment, which the internet undoubtedly is. Therefore we believe that it will find many satisfied customers."

Electronic signing is subject to owning a digital certificate. Here it depends on the specific customer needs which certificate to choose. For example, for communication with government authorities, one needs to choose a certificate issued by a state recognized certification authority. In contrast, for internal communication, a certificate issued by a company certification authority is sufficient. TrustPort eSign Pro generates a request for a user certificate, which then just needs to be sent to the selected certificate authority. After the issuance and acceptation of the certificate, it can be imported into a protected storage of TrustPort eSign Pro, which excludes the possibility of its theft and misuse.

Unique capabilities of TrustPort eSign are signing, encryption and time stamping of PDF documents, without the need to use expensive original software for editing of PDF. In addition, the recipient of the PDF document, signed and encrypted in this way, does not need any other software for its decryption and signature verification, other than the widespread free application available for reading PDF documents.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0993
Published: 2014-09-15
Buffer overflow in the Vcl.Graphics.TPicture.Bitmap implementation in the Visual Component Library (VCL) in Embarcadero Delphi XE6 20.0.15596.9843 and C++ Builder XE6 20.0.15596.9843 allows remote attackers to execute arbitrary code via a crafted BMP file.

CVE-2014-2375
Published: 2014-09-15
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.

CVE-2014-2376
Published: 2014-09-15
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVE-2014-2377
Published: 2014-09-15
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

CVE-2014-3077
Published: 2014-09-15
IBM SONAS and System Storage Storwize V7000 Unified (aka V7000U) 1.3.x and 1.4.x before 1.4.3.4 store the chkauth password in the audit log, which allows local users to obtain sensitive information by reading this log file.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
CISO Insider: An Interview with James Christiansen, Vice President, Information Risk Management, Office of the CISO, Accuvant