Endpoint Encryption

Hi,

We are working in a project where payment files are exchanged between bank and corporate customers. We are looking for a product that support file encryption and digitally sign a file. on the other side, it support decryption and verification of signature.

The product should support creating X.509 Certificate, creating CSR (Certificate signing request) that is compatible with LDAP (Microsoft CA) or any CA server product (please refer to a product if possbile).

The product should also support revoking of own certificate and validate others certificates on LDAP or any CA server product.

The product should also support Windows Server and Linux/ Unix.

could you please refer us to a products that can support this requirements?

Thanks

While PGP can encrypt and sign files using X.509 certificates, it does not have the capability to issue certificates using a CSR.  It issues PGP Keys by default.  X.509 certificates could be imported for use as PGP Bundle Keys, but you would need to obtain the certificates through another source.

The Symantec Managed PKI offering can issue encryption/signing X.509 certificates via CSR, or by setting up user groups connected to AD.  Revocation and issuance can be controlled through the online Symantec PKI Manager console.  That might be a better route to pursue for this specific setup.  The Managed PKI service's Enterprise Gateway, once set up in your environment, can communicate with your Microsoft CA server to implement X.509 certificates for users which have the Symantec certificate Authority as the root CA, meaning they will be trusted by most vendors.