- Overview
- Availability
Introduction
If you are a systems integrator wishing to add confidentiality, data integrity, and authentication to your custom solutions or an applications programmer needing to add encryption and digital signature functions to a new document management system or e-mail client, you may also wish to consider the various SA5API packages which provide, in linkable library form, essentially the same high-level cryptographic functions as the SA5CLI. If you need a low-level library of cryptographic primitives, consider the ISC CDKs.
Features
The SecretAgent command line (SA5CLI) allows you to invoke SecretAgent 5's security functions, either interactively or in unattended mode, from a batch file, shell script, or third party application.
Supported operations include:
- RSA, DSA, or ECDSA key generation (with optional PKCS#10 certificate request output)
- file sign, encrypt, or sign and encrypt (encryption uses a hybrid cipher in which random symmetric keys are wrapped with specified users' public keys; RSA, DSA, and ECDSA signature schemes are supported; supplied symmetric ciphers include AES, DES, TDES, DESX, and EA2)
- file inspect, validate, or decrypt and validate
- secure file erasure
- X.509 version 3 certificate parsing and chain validation (with optional CRL checking)
- PKCS#12 import (conversion of an RSA/DSA PKCS#12 file into a certificate file and TDES-encrypted PKCS#8 private key file)
- a growing list of CA functions (e.g., issue/revoke certificates, etc.)
Supported Platforms
SA5CLI packages are available for the following platforms:
- Windows 9x/NT4/2000/ME/XP/2003
Pocket PC 2003 (Windows Mobile), Pocket PC 2002/ARM (WinCE) - Solaris 7-10 (SPARC and x86)
- IBM AIX 4.x (PLinux (Intel x86)
- Linux
- MacOS X (PPC)
- HP-UX 11.x (PA-RISC)
- HP-UX 11i (Itanium) New!
- OpenVMS/AXP
- Compaq Tru64 (Alpha)
- SGI IRIX 6.x (MIPS)
- Cray UNICOS (C90/T90/T3E)