The Xinchuang industry is the foundation for the development of the digital economy and information security, and is also an important part of the "new infrastructure". It will become one of the important starting points for stimulating China's economic growth. With the release of the State-owned Assets Supervision and Administration Commission's No. 79 document, state-owned enterprises have accelerated the pace of implementing the localization of the information system, implementing the "2+8+N" strategy, and expanding from party and government agencies to finance, telecommunications, electricity, petroleum, 8 key industries of transportation, aerospace, education, and medical care, and further expand to other industries.
The promulgation and implementation of "Network Security Law", "Data Security Law", "Personal Information Protection Law" and other laws and regulations further clarifies the requirements and responsibilities of data protection, and protects the security of data in storage, transmission and use. It is an important part of information security construction.
HTTPS encryption is one of the important measures to achieve network communication security. The communication peer adopts a secure HTTPS encryption protocol and supporting cipher suites to transmit data securely in the network and protect confidential data security. In terms of network and communication security, MLPS 2.0 and Secret Review both put forward corresponding requirements for network security communication design.
Governments and enterprises realize the localized replacement of HTTPS encryption, and the first thing they face is the problem of application environment compatibility. Since the national secret algorithm has not yet realized the preset and trust of the world's mainstream browsers and mobile terminals, if the website deploys the national secret SSL certificate, most end users using mainstream browsers will not be able to access it normally, and cannot meet the availability, ease of use and reliability of the business system. Worldwide usage requirements.
To promote the localization of HTTPS encryption, it is necessary to take into account the compliance and global versatility of the national secret algorithm. Only by establishing a complete ecological support system can it truly reach a practical level. In this regard, WoSign CA provides a mature practical solution to realize the transformation of the national secret algorithm at the network communication level for web applications.
WoSign CA provides national secret digital certificate products such as national secret SSL certificates, national secret client certificates, etc., and combines national secret browsers (clients), national secret gateways (servers) and national secret Ukeys that support national secret algorithms to form "national secrets " Through the application of the " four elements of national secret", HTTPS national secret communication encryption is realized to ensure the confidentiality and integrity of the data in the communication process and the authenticity of the identity of the communication subject.
(1) National secret certificate: provide national secret digital certificate products such as national secret SSL certificate and national secret client certificate, and support domestic encryption algorithms such as SM2/SM3/SM4 and national secret security protocols.
(2) National secret browser: Provide a national secret browser that adapts to national secret certificates, supports domestic encryption algorithms and national secret security protocols, and realizes the upgrading and transformation of national secret algorithms on the browser side.
(3) National Secret Ukey: Provide national secret UKey adapted to the national secret client certificate, which is used as a secure storage hardware carrier for digital certificates and private keys to protect the security of private keys.
(4) National secret gateway: The national secret gateway supports domestic encryption algorithms and national secret security protocols, adapts to Wotong national secret certificate products, and realizes the upgrade and transformation of the national secret algorithm on the server side.
WoSign CA also exclusively launches the "SM2/RSA dual certificate" service, deploying SM2/RSA dual certificates at the same time on the national secret SSL gateway or national secret support module, the server software automatically recognizes the browser, dual certificates, dual algorithms, self-adaptive and compatible with all Browser, taking into account national secret compliance and global versatility, effectively solves browser compatibility issues.
WoSign CA has been deeply involved in the industry for more than 20 years. It has obtained the "Permit for Using Passwords for Electronic Authentication" issued by the State Secret Bureau, and the "Electronic Authentication Service License" issued by the Ministry of Industry and Information Technology. It has also been approved for e-government electronic authentication service qualifications. And the authoritative CA organization of the SM2/RSA dual certificate application mode, with compliance qualifications and professional service capabilities, provides mature solutions and strong guarantees for government and enterprise HTTPS localization replacement.