Kyberpass Launches Next Generation TrustPlatform

Kyberpass first to combine Web Services and Secure SSL VPNs for global B2B integration
and offers complementary plug-ins for secure e-mail, digital signatures and extranet

OTTAWA, September 30, 2002 – Kyberpass® Corporation, a leading provider of business integration software for trusted e-commerce today announced the next release of the Kyberpass TrustPlatform™, the first network-centric, B2B integration platform for securing both XML Web Services and SSL Virtual Private Networks (VPNs). The Kyberpass TrustPlatform makes it easy and affordable for enterprises to engage in e-commerce activities with customers and business partners, regardless of their back-office platforms or applications. Kyberpass TrustPlatform is designed to provide flexibility to an enterprise’s IT architecture by extending the life of an enterprise’s existing systems and applications.

With a unique network-centric approach that eliminates the requirement to do back-office integration, the Kyberpass TrustPlatform is deployed at the perimeter of the network to securely connect customers and business partners. It combines a Security Server, Browser/Desktop Plug-ins and a Developer Toolkit and addresses a number of business and technology needs including application integration and extranet VPNs for anytime, anywhere access. Kyberpass is offering the Desktop Plug-ins at no extra charge.

"Organizations around the globe are faced with the challenges of securing the Virtual Enterprise,” said David Kosiur, senior analyst Network and Telecom Strategies for the Burton Group. “Enterprises have been turned inside out and the need for security now spans business partners, B2B exchanges and managed service providers. Kyberpass has a strong record of success in both SSL VPN and XML web services security and they continue to lead the way in solving complex B2B integration challenges."

The Kyberpass Security Server
The Kyberpass Security Server is the cornerstone of the Kyberpass TrustPlatform. It acts as a business partner broker that is deployed at the edge of an organization’s network to control customer and business partner access to sensitive applications and to ensure the correct handling and routing of business transactions. The Security Server supports the following functions essential to trusted e-commerce: strong user identification and authentication, data confidentiality, data integrity verification, non-repudiation and tamper-proof logging.

The Security Server is built upon a foundation set of system and security services that are common to all business partner integration solutions, plus additional services that can be loaded to meet specific functionality requirements. These services include:

• Common Services are the Security Server libraries, configuration files and system services that are common to all deployments including cryptographic libraries, configuration files, failsafe services, audit logging services, secure transport service, proxy service, and application programming interfaces.
• Extranet Services can be installed on the Security Server to provide features and functionality to support client-less, SSL-based Extranet VPN solutions. Extranet Services include Intranet extension services, Microsoft networking services, back-office single sign-on services, advanced application logging and policy services, and firewall tunneling services.
• B2B Integration Services can be installed on the Security Server to provide features and functionality to support XML web services solutions. B2B Integration Services include the handling, security processing, logging, and routing of XML-based business transactions.
• PKI Validation Services can be installed on the Security Server to provide features and functions to support the use of digital certificates and digital signatures for both XML web services and Extranet VPNs implementations. Support is provided for all major PKIs including Baltimore, Entrust, Identrus, Microsoft, Netscape, RSA and VeriSign.
• Marketplace Extensions can be installed on the Security Server to enable additional features, functionality, services, or specific operating rules to follow when the Security Server is deployed within a specific marketplace or B2B exchange such as Identrus, SWIFT or the Canadian Payments Association.

Desktop Plug-ins
The Kyberpass TrustPlatform also includes a set of optional plug-ins at no additional cost that can be pre-configured and downloaded from a central web site and installed on Windows-based workstations to interact with the Security Server for providing additional business integration capabilities.

• Extranet Plug-in provides secure SSL-based access for any application on any platform including legacy applications, commercial off-the-shelf (COTS) applications, remote file systems and e-mail servers.
• Signing Plug-in allows end users to digitally sign e-business transactions that can be later be validated downstream by back-office applications using the PKI Validation Services of the Security Server.
• Secure E-mail Plug-in for Microsoft Outlook allows messages to be digitally signed and/or encrypted prior to being sent. It also decrypts the message and validates the digital signature in real-time using the PKI Validation Services of the Security Server.

Developer Toolkit
The Developer Toolkit provides a comprehensive developer environment for further extending the capability of the Kyberpass TrustPlatform. It provides a developer with the documentation, libraries, application programmer interfaces, and sample code to develop custom extensions to the Security Server and/or Plug-ins to meet unique customer security and business requirements. APIs offers the ability to extend the Kyberpass TrustPlatform in several ways including:

• Traffic Analysis Procedures: The Security Server includes a Traffic Analysis Procedure (TAP) API that allows a TAP data stream filter to be attached to a proxy definition for interaction with the data stream of an application session. When a TAP is applied, each TCP/IP data packet is passed to it for analysis and processing prior to sending the packet to its final destination. Both client request and server response packets are sent to the TAP.
• Service Handlers: The Security Server includes a Service Handler Interface (SHI) that can be used to develop service handlers for processing XML web service transactions and integrating back-office applications. Service handlers can be written in any language and do not require any knowledge of cryptography. They are simple to implement with web and legacy application servers using CGI scripts, Java applets/servlets and ISAPI DLLs.

Platforms Supported
The Kyberpass Security Server is available on Windows 2000 Advanced Server, Sun Solaris and IBM AIX. Linux support is planned for a future release.

Availability
The Kyberpass TrustPlatform v5.4 is currently in beta. Commercial availability is planned for January 2003.

About Kyberpass
Kyberpass is a leading provider of B2B integration software for trusted e-commerce. Global enterprises, Identrus banks, managed service providers and governments use the Kyberpass solution to trust enable payment systems, XML web services, VPNs and e-mail. Our unique middleware architecture accelerates implementation and reduces integration costs, while creating new revenue opportunities and streamlined business processes. With integration partners like IBM, Unisys, Logica and TRW, Kyberpass provides the best platform for secure, scaleable and manageable e-commerce architecture. For more information about Kyberpass Corporation, please visit www.kyberpass.com.

For more information, please contact:

Robert Lendvai
Kyberpass Corporation
613.727.6556 x303
rlendvai@Kyberpass.com

Maggie O’Lett-Patterson
High Road Communications
(613) 236.0909
MOlett@HighRoad.com