HID Global’s pivCLASS Certificate Manager is a server-based software application used to revalidate extracted or imported PKI-based credentials such as the PIV certificate and CAK certificate. Periodic revalidation can be scheduled using the operator interface. Revalidation includes path discovery (if needed), path validation and revocation checking. The Certificate Manager can validate certificates signed by either RSA or ECC cryptographic algorithms. Revocation checking is conducted by contacting the issuing Certificate Authority or a Certificate Validation Authority to retrieve certificate revocation lists (CRLs), Online Certificate Status Protocol (OCSP) responses or Server-based Certificate Validation Protocol (SCVP) responses.
- Easy to deploy and use
- Tested by GSA as part of the pivCLASS FIPS 201 solution
- Interoperable with every standards compliant Certificate Validation Authority
- Supports all NIST specified key lengths and signing algorithms