Jump to content

EJBCA

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by David CARELLA (talk | contribs) at 09:38, 9 February 2016 (Add Screenshot of EJBCA Administration web interface). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

EJBCA
Developer(s)PrimeKey Solutions AB
Initial releaseDecember 5, 2001 (2001-12-05)
Stable release
6.4.2 / December 29, 2015 (2015-12-29)
Repository
Written inJava on Java EE
Operating systemCross-platform
Available inBosnian, Chinese, Czech, English, French, German, Japanese, Portuguese, Swedish, Ukrainian
TypePKI Software
LicenseLGPL v2.1
Websitewww.ejbca.org

Enterprise Java Beans Certificate Authority, or EJBCA, is a free software public key infrastructure (PKI) certificate authority software package maintained and sponsored by the Swedish for-profit company PrimeKey Solutions AB, which holds the copyright to most of the codebase. The project's source code is available under terms of the Lesser GNU General Public License.

Design

The system is implemented in Java EE and designed to be platform independent and fully clusterable,[1] to permit a greater degree of scalability than is typical of similar software packages. Multiple instances of EJBCA are run simultaneously, sharing a database containing the current certificate authorities (CAs). This permits each instance of the software to access any CA. The software also supports the use of a Hardware Security Module (HSM), which provides additional security. Larger-scale installations would use multiple instances of EJBCA running on a cluster, a fully distributed database on a separate cluster and a third cluster with HSMs keeping the different CA keys.

EJBCA supports many common PKI Architectures such as all in a single server, distributed RAs and external validation authority. An example architecture is illustrated below.

Example PKI architecture with external validation authority


References

  1. ^ Automated and large scale operations

Further reading

  • Research and application of EJBCA based on J2EE; Liyi Zhang, Qihua Liu and Min Xu; IFIP International Federation for Information Processing Volume 251/2008; ISBN 978-0-387-75465-9
  • Chapter "Securing Connections and Remote Administration" in Hardening Linux; James Turnbull; ISBN 978-1-59059-444-5
  • Exception-Handling Bugs in Java and a Language Extension to Avoid Them; Westley Weimer; Advanced Topics in Exception Handling Techniques Volume 4119/2006; ISBN 978-3-540-37443-5
  • A workflow based architecture for Public Key Infrastructure; Johan Eklund; TRITA-CSC-E 2010:047


Retrieved from "https://en.wikipedia.org/w/index.php?title=EJBCA&oldid=704068729"