Smartcard deployments providing digital signatures, authentication and encryption in enterprises are often handled efficiently by a card management system (CMS) that directly controls PKI (Public Key Infrastructure) system(s) and establishes uniform management functionality for the issuance and lifecycle management of smartcards and tokens.
EJBCA is a free, highly scalable, and increasingly popular PKI system for the Java EE platform, suitable even for enterprise environments because of its integration capabilities. The aim of this thesis /degree project is to design and develop a connector, capable of securely connecting EJBCA to a card management system.
It was a design phase requirement that the connector should be easily adaptable to a general Certification Authority. I also took into consideration the security requirements of Public Key Infrastructure systems from both architectural and development perspectives. To prove the solution’s correctness, I designed and developed a card management application based on the Java EE platform, using this connector to control the EJBCA. The developed application is also able to electronically personalize smartcards and tokens.