Site icon SSL.com

Business Identity Certificate with YubiKey

YubiKey FIPS

SSL.com’s Business Identity document signing, client authentication, and email certificates are delivered on FIPS 140.2 validated YubiKey USB tokens, offering many benefits to SSL.com customers.

The YubiKey FIPS token offers extra security for your private keys, which are protected by a PIN and are not exportable from the device. Plus, you get the convenience of having your certificates and keys installed on a small USB token that you can put on your keychain and take anywhere!

Read on to find out more about all the great features offered by our Business Identity certificates, plus ordering information:

If you already own a YubiKey FIPS that you’d like to install a Business Identity certificate on, we’ve got you covered! Please read our how-to on Key Generation and Attestation with YubiKey for details.

FIPS 140.2 Validated Hardware Token

Each Business Identity certificate is shipped on a FIPS 140.2 validated YubiKey USB token, offering multiple security and convenience benefits:

Digital Signatures for Adobe PDF and Microsoft Office

Your Business Identity certificate can be used for secure document signing in Adobe PDFs and Microsoft Office documents.

A digitally-signed contract or other legal document is just as legally binding as a paper contract signed in ink. The Electronic Signatures in Global and National Commerce Act (2000) indicates that a contract or signature “may not be denied legal effect, validity, or enforceability solely because it is in electronic form.”

Secure S/MIME Email

SSL.com’s Business Identity certificates also support the S/MIME standard for email protection. S/MIME works in two ways to prevent phishing attacks and keep messages secure while in transit:

Note: Because it is impossible to export a private key from a FIPS YubiKey, it is important to deliver a separate S/MIME encryption certificate outside of the YubiKey so that users can back up their private key. Otherwise, they are at risk of losing access to their data if a YubiKey is lost. For this reason, each Business Identity certificate includes a download credit for an additional Organization Validated (OV) S/MIME certificate, which may optionally installed by a user on their YubiKey. Please see our how-to with complete instructions for this simple process.

Client Authentication and Single Sign-On

SSL’s Business Identity certificates offer an additional layer of client authentication for workstation, application, and website sign-in that is not susceptible to phishing attacks, keystroke loggers, or other forms of credential theft. Once set up, it’s easy to log into any Windows, Mac, or Linux computer with just your YubiKey and a PIN (please see Yubico’s documentation for specific instructions for each platform). Plus, for maximum flexibility, each YubiKey FIPS offers several additional protocols for authentication and sign-on, including:

Ordering

SSL.com’s Business Identity certificates with YubiKey are available for ordering now, with discounts of up to 45% for multi-year orders. Additional discounts are also available through our reseller program.

 

If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. Thank you for choosing SSL.com!

 

Exit mobile version