CASE STUDY APPLICATION 03 Product: vinCERTÂŽ Sector: Banking Launch date: 2011 Number of users: 200
CLIENT CHARACTERISTICS Spanish banking group with 6,500 employees and a network of more than 1,000 offices distributed between three financial institutions
THE
SOLUTION
Centralised safe-keeping, management, control and auditing of corporate software certificate use STARTING POINT
NEED
The heads of the branch offices and risk management departments frequently use corporate software certificates, especially in their dealings with the Bank of Spain and the Official Credit Institute (ICO) in major operations, such as credit applications and risk validation.
Control and limitation of the corporate software certificate use, in different active directories and with high availability.
Each corporate certificate is freely available to all authorised employees. There are no controls in place to firmly ensure the certificates are used only for the purposes established for each user.
Each financial institution in the banking group has its own certificates. The group’s policies require each one to maintain exclusive use of its certificates.
SOLUTION FEATURES
IMPLEMENTATION SPECIFICS
The vinCERT® certificate management system includes a server where certificates are securely controlled and an agent set up at each work station as a cryptographic service provider of additional certificates. The published certificates will be used through the cryptographic service provider in the central system.
Set up of two simultaneous vinCERT® systems in different locations to ensure complete availability.
High-availability architecture and fault tolerance.
Barcelona Bilbao Madrid Valencia
CLIENT SATISFACTION The user-friendliness of vinCERT® has led to widespread use of the software certificates, even extending to uses that were not established when it was implemented, such as signing for inhouse expenses. Periodic acquisition of new licensing packages.
HEADQUARTERS
Av. Carrilet, 3. Edificio D, 4º B 08902 L’Hospitalet de Llobregat (Barcelona) T +34 93 432 90 98 · F +34 93 432 93 44
+34 902 362 436 info@vintegris.com vintegris.com
DECEMBER 2014
The system allows the person responsible for security to establish certificate permissions by user and application, delegate and revoke use, stop certificates from being exported to another work station or outside the organisation division, and perform real-time auditing of the operations carried out.
Adapting to a multi-domain system: the certificates of each of the three institutions are managed in a separate active directory.