Intesi Group S.p.A. Hi!

We have moved.
To be redirect

PkNet Java Architecture

If the Digital Signature functionalities must be available in different environments and without boundary in the choice of Internet browser used, the solution for Microsoft Com / .Net environments can not be taken into consideration.

In these situations, and in any other case where a high portability of the product is requested, the best way to go on is to adopt a solution based on Java language organized according to the Applet structure, supported by most known browsers.

PkNet in Java version is essentially a library of Java classes that expose a programming API very simple and of  high-level to manage functionalities of Digital Signature and Authentication.

The following figure describes the architectural block diagram of PkNet Java.

This diagram shows the main PkNet Java Interface layer which is the module in which security features are implemented. On this is based the PkNet Java Applet that allows an easy integration of PkNet in the compatible browsers and manages the graphical presentation of certificates on the smartcard and interaction for loading the Pin.

PkNet Java Interface is implemented on an intermediate layer of virtualization of cryptographic devices, developed in order to make the product independent from device used and from the interface that it exposes the guest operating system.

Each device is then reached  passing through the stack of interfaces and drivers that mark him. As with any other implementation of PkNet, the Java version is  able to automatically recognize the smartcard (or the device used, hardware or software that is) and reconfigure automatically to allow to use the device without requiring any intervention of configuration and programming of the application.

PkNet Java operates directly on certificates on the smartcard and therefore does not require prior passages of credentials on the computer used.

An interesting feature of  PkNet Java is the ability to make a digital signature from the sole hash of the document to be signed. Working in conjunction with PkBox this function allows to minimize network traffic by eliminating the download of the document and the following upload. The result of the signature is a detached signature that will be rebuilt by PkBox including in PKCS # 7 format also the original document.
The same operation is possible for documents to be signed in PDF format.

Available Versions:

PkNet Express
It 's the version that solve all the problems of logical security for the business user (contract signing, authentication, file protection).
PkNet provides features otherwise optional such as output M7M for full interoperability with InfoCert for Time Stamps and management of XML Signature.
PkNet comparative sheet
For functionalities offered by the two versions, please see PkNet SHEET.
Architecture PkNet
More details on PkNet architectures.
- Architecture PkNet
- Architecture PkNet Java
Copyright © 2021 INTESI GROUP S.p.A
Via Torino, 48 - 20123 Milano - Italia
P.IVA 02780480964
Capitale soc.: Euro 1.000.000,00 i.v. - REA: Milano - 1562415