ODA - Offline Device Administration
30.04.2010
ODA - An application for Card Management and Registering of PKI cards in IAM (Identity & Access Management) environment and Enterprise Security. In addition to DAS (Device Administration Service) a pure online solution Elatec can offer now ODA (Offline Device Administration) which provides enrollment, issuing and management of PKI cards in offline mode.
1. Description of ODA
ODA is an application for card management and registering. The application operates independently. It does not need any network services, as it runs directly from a safe storage memory device such as a Gemalto SEG Token (Secure Enterprise Guardian) USB Token with Secure Flash Memory and based on Gemalto .NET Technology. Therefore Installation on the hard drive is not required.
The card security depends on setting an administrator key. Leaving the factory administration key unchanged may expose the card to unauthorised use (possibility to reset PIN) or data modification. Additionally, the application offers a comfortable way of registering the cards and adding short descriptions to each of them.
2. Main ODA functionalities
· registering Gemalto .NET cards (an owner can be added to each card)
· secure access to the application thanks to the ODA controller
· changing the administrator key (required for card security).
· diversifying the administrator key
· changing PIN
· unlocking the forgotten PIN
· remote PIN unlocking on the challenge/response basis
· installing/deleting/viewing certificates saved on the card
· safe storage of administrator keys
Compared to DAS (Device Administration Service), which requires online connectivity (we had reported about DAS in several newsletters before), ODA does not require online connectivity and works fully offline.
For more Information please contact:
George Eidenschink (g.eidenschink(at)elatecworld.com)
