|The Open–source PKI Book: A guide to PKIs and Open–source Implementations|
|Prev||Chapter 9. Supported Crypto hardware and Software architectures||Next|
KeyMan is a management tool for the client side of the Public Key Infrastructure.
KeyMan is a management tool for the client side of the public key infrastructure (PKI). KeyMan manages keys, certificates, certificate revocation lists (CRLs), and the respective repositories to store and retrieve these items. The full life cycle of certificates is supported and processes involved in handling user certificates.
KeyMan features at a glance:
Full support of user certificate life cycle
Management of various key/certificate repositories
Supports cryptographic tokens via PKCS#11 interface
Ready-to-go support for IBM Smart Card for e-Business (IBM JavaCard)
X.509/PKIX (certificates V3, CRLs V2) supported
Compliant with PKCS standards (#7,#10,#11,#12)
Supports Netscape certificate requests (SPKAC)
Integration with VeriSign and other CAs
100% Java, runs on JDK 1.1/1.2
Easy to use GUI
KeyMan was developed by Thomas Eirich of the IBM Zurich Research Laboratory.