Through this program NCDC enlists approved storage tokens and Smart Cards for digital certificates where the center in collaboration with the manufacturers of these tokens and Smart Cards work on performing the necessary tests and verify whether they meet the requirements of NCDC. The purpose of such qualification is to be selective in the usage of hardware in the Saudi PKI from a security viewpoint. NCDC may conduct appropriate testing to ensure that the hardware / software used in the Saudi PKI meets proper security requirements and helps mitigate risks associated with the usage of such devices/applications.
The certified cryptographic products are:
- SafeNet iKey 4000
- SafeNet eToken 5100
Through this service, government agencies are linked with the NCDC, the service enables the admins at agencies to issue and manage all of their digital certificates and thus take advantage of all of the features offered by digital certificate such as secure email, strong authentication, and signing and encrypting data, files and documents.
Any government entity may issue digital certificates for the use of its employees, decision makers, suppliers, or systems integrated with the government entity or any entity that has the right to access, view or modify its private and confidential information.
Beneficiaries of Rabit Service:
All government entities wishing to benefit from the PKI services by issuing and managing all their requirements of digital certificates.
It is a free consulting service provided by the NCDC to help professionals within government/business sectors to develop solutions and applications to utilize the PKI digital certificates, and accordingly to raise the level of safety and trust in the transactions of Government entities/businesses through having:
- Strong authentication using digital certificates instead of a password.
- Digital signature using digital. certificates to sign files/documents .instead of a physical signature
- Encryption of files documents and all other data.
- Electronic seal through digitally sealing any file issued by the entity, instead of a physical seal.