Axway VA Suite protects mission-critical infrastructures by ensuring that revoked or invalid credentials cannot be used for secure email, smart card login, network access (including wireless), or other sensitive electronic transactions. With support for caching and replication of revocation data regardless of format, VA Suite enables cost-effective scalability across a wide range of operational environments, including hardware-software appliances and Java-based solutions for distributed or hosted environments.
Banks, businesses, governments, and defense organizations across the globe use Axway VA Suite for real-time validation of digital certificates within PKI environments.
Using protocols like OCSP and CRLs can help identify revoked entities; but knowing whose credentials are bad is just the tip of the information iceberg.
Validation is constantly evolving, and Server-based Certificate Validation Protocol (SCVP) is the emerging new standard. While OCSP-based certificate validation provides revocation status of digital certificates in a highly performant and scalable manner, VA Suite’s SCVP technologies take access validation to the next level, enabling applications to delegate both revocation-checking and path validation to a trusted server in a single request.
SCVP enables harvesting of an entity’s credential for the full range of their access rights, cross-validated across multiple certificate chains by highly accredited certification issuers. In real-world terms, this means that not only do you know John Smith’s credential status, you can also:
VA Suite consists of several products that provide a flexible and robust certificate validation solution for both standard and custom desktop and server applications:
These components may be used together or, leveraging open standards, integrated with existing solutions using OCSP or SCVP (RFC 5055).
VA Suite is CA-neutral and supports all widely adopted international security standards and open technologies: