StrongAuth PKI2FIDO

StrongAuth PKI2FIDO is a web-application written in Angular2 and Java, using REST webservice calls for client-server communication.

The application enables users that have X.509 digital certificates (optionally, on smartcards – such as the PIV card or CAC) to strongly-authenticate to PKI2FIDO using TLS-ClientAuth and then register a FIDO U2F key with a FIDO Server (such as StrongKey CryptoEngine at https://sourceforge.net/projects/skce).

The TLS ClientAuth strong-authentication process validates the digital certificate’s chain (if any) and uses CRLs to verify the certificate’s revocation status (OCSP checking will come in the next release).

Once the certificate chain is validated, it checks an LDAP server to determine if the user is authorized to register a FIDO U2F Key with the site.

Since PKI2FIDO is in Beta-status, a Deregister button to delete FIDO keys is enabled; it will be removed in the Final release.

Today’s small-to-medium-sized (SMB) businesses and large enterprises are saving on their monthly communications costs by making one simple decision: to switch to a VoIP service solution from their old, outdated Plain Old Telephone Service (POTS). By choosing a new VoIP service, these companies enjoy the flexibility, reliability, call features, and audio quality that only a VoIP service can provide. Plus, they cut their phone bill by up to 70%!