Entrust TruePass

Features and Benefits

What's New in Release 7.0?


Entrust TruePass 7.0 is the first Web security solution in the market to deliver bi-directional, end-to-end security for online information regardless of an organization's Web infrastructure. Designed for governments and businesses looking to securely exchange sensitive information with their customers and partners online, Entrust TruePass 7.0 increases the security and management capabilities to reduce the risk of unauthorized access or theft.

Below is a list of enhancements and updates now available in Entrust TruePass 7.0:

Secure file upload
Entrust TruePass™ 7.0 provides the ability for users to digitally sign and/or encrypt a file that will be sent to a backend application. Entrust TruePass users can also decrypt files from the backend application and store the decrypted file locally.

  • Enables the secure transfer of files between users and backend applications with end-to-end encryption
  • Digitally signed files provide data integrity and non-repudiation of the file transfer
  • Ensures data privacy regardless of the network configuration, only the recipient backend application can decrypt the files transferred by the user and vice versa.

Bi-directional encryption
Entrust TruePass™ 7.0 provides the ability for users to decrypt HTML data sent from the backend application dynamically, and have the unencrypted data rendered in the HTML form transparently. Entrust TruePass 7.0 is the first and only Web security solution on the market able to perform bi-directional encryption.

  • Ensures data privacy regardless of the network configuration, as the backend application can now encrypt HTML data that can only be decrypted by the end user. i.e. 2-way, end-to-end data encryption

Easier 3rd party application integration
Entrust TruePass™ 7.0 now provides a Client Toolkit API for easier integration with third-party applications. Third-party applications can now programmatically request and receive digitally signed and/or encrypted HTML data.

  • Enables increased flexibility when integrating with 3rd party applications. For instance, multiple signatures per form can now be supported.
  • 3rd party applications have greater control over the digital signature process. As an example, 3rd party applications can determine if/when status pages should be displayed during the digital signature process.

Enhanced Single Sign-On
Entrust TruePass™ 7.0 provides enhanced Single Sign-On (SSO) capabilities with the addition of the ability to configure cookie domain environments. Entrust TruePass 7.0 enables the cookie domain scope to be configured and it provides the ability to create multiple logical groupings of SSO domains offering larger deployments greater flexibility.

  • Reduces the need to deploy multi-domain solutions
  • Enhances usability by reducing the amount of times a user is prompted to authenticate to services when visiting large, comprehensive Web portals.

Role based password policies
Entrust TruePass™ 7.0 now provides the ability to support Entrust Authority Security Manager™ password policies based upon the user's role.

  • Previous versions of Entrust TruePass enforced a single set of password policies across all users. With the ability to enforce password rules based upon the user's role, more flexible Entrust TruePass deployments can be implemented. For example, depending upon the user community different password policies may be implemented. Customers would be assigned a less restrictive password policy, partners password policies could be stronger, and employees could be configured to follow strict password policies.

Support for IETF RFC 3039 (3 key pairs)
Entrust TruePass™ 7.0 provides support for IETF RFC 3039 (3 key pairs). One key pair is used for all encryption operations, a second key pair is used for authentication and key/certificate lifecycle management, and a third key pair is used for all digital signature operations.
Note: Entrust TruePass will continue support the 2-key pair model previously implemented.

  • By delivering support for IETF RFC 3039, Entrust TruePass 7.0 enables compliance with the European Union Digital Signature Directive

Support for Entrust Entelligence Security Provider co-deployments
Entrust Entelligence™ Security Provider and Entrust TruePass can be co-deployed seamlessly together so that users can use both products for both enterprise and Intranet/Internet applications while leveraging a single Entrust Digital ID.

  • A single digital ID can now be used for enterprise applications like email, VPN, and e-forms
  • Entrust Entelligence Security Provider leverages and strengthens the existing security capabilities in Microsoft Windows applications

Enhanced Entrust GetAccess™ 7.0 integration
Entrust GetAccess™ 7.0 integration with Entrust TruePass has been enhanced such that a single Web server filter can now be deployed for joint Entrust GetAccess and Entrust TruePass implementations.

Tuning and Sizing Guides
Entrust TruePass™ 7.0 product documentation now include Tuning and Sizing guides to assist with customers planning large deployments of Entrust TruePass. The Tuning and Sizing guides provide information on what performance can be expected from a specific baseline configuration and guidance on how to tune and scale the baseline configuration accordingly.

Updated Platform Support
Support for the following new platforms has been added:

  • BEA WebLogic Application Server 7.0
  • IBM WebSphere Application Server 5.0
  • IBM AIX 5.1

For more information, contact us online.

Entrust Public Key Infrastructure (PKI)

Public key infrastructure or PKI refers to a system that provides certificate management for digital certificates. Digital certificates contain public key pairs that can be used for encryption, digital signature and authentication security. Entrust PKI security solutions help government agencies and corporations to secure their digital identities and information.

Specialized "passport PKI" is used by governments to verify and secure data stored on a chip imbedded in passports issued to citizens. Epassport PKI involves the use of PKI by governments to secure data stored on a chip imbedded in a passport. The government acts as a certification authority that issues the digital certificates used in an ePassport system.

Entrust is a trusted provider of network security solutions that include digital certificates, managed PKI certificates, two factor-authentication, ssl certificates, token authentication, smart card PKI and encryption software.