PKI Agent
Sign web application data by bridging the gap between your browser and system certificates.
Download Beta
PKCS1 Signatures in Your Browser
PKI Agent bridges the gap between system certificates and browsers. With PKI Agent, you can sign web application data in your browser using the certificates in your machine's local store.
If you are building a web application solution that requires user signatures, your users are not able to cryptographically sign data in their browser by default. This is due to the gulf between the browser sandbox and the system store where cryptographic certificates reside. In order for your users to to sign your web application data according to global cryptography standards like PKCS#1, you need a solution like PKI Agent to bridge the gap.
PKI Agent's narrow scope helps ensure it integrates seamlessly with your larger solution. The tool simply generates a PKCS#1 signature with a user-selected certificate for any arbitrary data in a user's browser, then provides the browser access to this signature so that it can communicated to a web application. The broader web application solution can handle or process this signature data according to whatever logic is appropriate.
THe PKI Agent UI provides users with the ability to select certificates from the local store to expose within PKI Agent's virtual layer. PKI Agent hosts a REST API on localhost that the browser can query when it needs a signature for some arbitrary data. PKI Agent processes the REST request, prompts the user to choose an available certificate, generates a PKCS#1 signature, and returns this signature data to the browser.
Example: Signing PDFs
Most in-browser PDF signatures are merely an agreement to trust a third party like DocuSign. To instead sign the PDF cryptographically following universal standards like PCKS#1, the user needs to access system certificates via a tool like PKI Agent.
With PKI Agent, developers can build web applications that allow users to sign PDF data cryptographically to ensure confirmation, trust, and non-repudiation. These signatures do not require the use of an external signature authority, but rather allow users to choose a local certificate to create a digital signature.
Since PKI Agent is a general-purpose signing tool, it is up to the developer of the web application to integrate the signature data from PKI Agent into a broader solution like a PDF signature platform. PKI agent does not determine how the web application should append the signature data to the PDF data, nor does it impose any restrictions on how the signature is used.
PCKS#1 Signatures In Your Browser
Sign data in your browser using cryptographic standards like PKCS#1.
Access Local Certificates
Choose which certificates from the system or user stores are available in PKI Agent's virtual layer.
Integrate with Any Web App
PKI Agent's flexible REST API ensures that signature data can be seamlessly integrated into a broader web application without contraints.
Control Hashing Logic
Calculate hashes either server-side or via PKI Agent depending on your processing needs.
Product Features
- Support for modern cryptography standards like PCKS#1.
- Flexible REST API for communicating signature data with browsers.
- Provides users control over which local certificates are made accessible.
- Embedded HTTP server for running quietly in the background on localhost.
- Sign any arbitrary block of data including PDF documents, manifest files, and more.
- Perform hash calculations from raw data or sign already-hashed data.
Download Beta
Fully-Functional Free Beta (90-Day Expiration)
Get started today and see why developers worldwide
choose /n software components.
Red Carpet Subscription
Everything in One Package
The Red Carpet Subscription provides access to every product and edition at a fraction of the cost of purchasing the included products.
Order