• Company
  • Solutions
    • Eletronic Invoice
      • NF-e Fácil
      • NF-e Server
    • Management System
    • EFD PIS/COFINS
    • BPO Fiscal
    • SPED Legal
    • Contingency of NF
    • HSM Digital Certificate
    • Correcting Registries
    • Eletronic Bill of Lading - CT-e
    • NFS-e Fácil
    • ISSQN for town halls
  • Partners
  • Virtual Store
  • Learn More
  • Blog
  • Contact
 
Se você é cliente Bradesco clique aqui

 

Safekeeping of the Hardware Security Module – HSM Digital Certificate

Maximum security for your digital certificates.

The NFe do Brasil is the only enterprise to produce the hardware of security guard native HSM for the safe policewoman of the digital certificate for operations of Electronic Receipt and SPED with the use of cryptography.

More advantages:

• Attends the legislation and regulations of security;
• Provides an answer immediate and appropriated in situations of emergence;
• Makes possible to negotiate reduction of the prize of insurance;
• To increase the alignment with the business of the organization;
• Protects legally the organization, administrators and technicians.

   
Orkut Windows Live Facebook Del.icio.us Google


 

Safekeeping of the Hardware Security Module – HSM Digital Certificate

Maximum security for your digital certificates.



Many companies are faced with a problem that the digital certificate is vulnerable, as any document undersigned with it is legally valid and cannot be refuted. Should they come to the hands of mischievous people, they may risk being employed to issue electronic invoices on the company’s behalf without its consent, among other unlawful transactions. There are a number of companies that were subjected to some kind of fraud. Secret court investigations evidence that these problems were a result of unduly employed digital certificates. To solve this problem, NFe do Brasil devised HSM Net D-Fence to securely safe-keep digital certificates. This equipment may be installed directly in the organization’s server structure in order to sign digitally and securely all the required electronic invoices and documents. HSM is widely known as a “digital vault” and its use is recommended by the state financial authorities.

In addition to frauds, risks with digital certificates are much more related to file corruption. In case of any unforeseen events with this electronic document, whether or not caused by third parties and there being no contingencies in the company, the latter will be unable for a spell to issue electronic invoices, which will reflect on its billings.

Info Exame magazine – October 2009:
Technical Assessment: 8.5



RECOMMENDATION:
Any company with a critical technological environment, which complete or partial standstill may mean loss of revenues.

Companies subject to regulations such as:

• Banco Central Resolutions (SPB, 3380, 2554, 2817, among others);;
• Basel II;
• PCI/DSS;
• BITS;
• CVM, SEC/SOx;
• Companies traded in Stock Exchanges.

Example: Sarbanes-Oxley

» Section 103 -  Audit records (including electronic records) should be kept for a 7-year period.

» Section 201 - Firms that audit company books may not provide them with services related to IT.

» Section 302 - CEOs and CFOs should attest every quarter the truth and accuracy of the information contained in financial information documents.

» Section 404 - CEOs, CFOs and external auditors should attest that internal controls on financial information exist and are in effect (confidentiality, authenticity, integrity, non-rejection, and availability).

» Section 802 - Criminal liability for document adulteration – financial and audit records (documents, files, database) should be maintained and protected.

Benefits

• Digital certificate safekeeping instrument;
• Meets security legislation and regulations;
• Provides an immediate and appropriate response in emergency situations;
• Encourages discussions on reducing insurance premium;
• Increases alignment with the organization’s business;
• Legally protects the organization, its managers, and technicians.

NFe do Brasil is the only company that locally produces HSM safety hardware for digital certificate safekeeping, for Electronic Invoice and SPED transactions using encryption.

Safety Hardware (Net D-Fence)



Net D-Fence is an HSM (Hardware Security Module appliance of the network attached type, in other words, its services are offered through a network. Its key function is to be a safe storage facility for encrypted keys. In addition, it is also a provider of encryption services such as digital signatures, creation of authentication keys, among other functionalities.

Applications that require encryption normally need greater processing, which may be employed for the transaction’s core activity. A great concern by managers is the storage of encryption keys, as once in possession of these keys, any confidential information protected by them may be exposed. In systems based on public keys, the problem is often not only confidentiality but possession, integrity, and originators of information. With the regulating of ICP-Brasil (Infrastructure of Brazilian Public Keys), documents with digital signatures are legally valid and cannot be refuted by their issuers.

Net D-Fence is an appliance designed from the start to provide protection in storing keys according to international standards. It concurs with market standards, ensuring inter-operations and ease in integration. Its architecture is modular, which allows customers to acquire those modules only (internal in Net D-Fence) required by the solution.

HSM is provided in two modules with a rack-mount cabinet:

1.Net D-Fence NG;
2.Net D-Fence XP.

NFe do Brasil keeps careful track of the definition and progress of a number of government initiatives in which encryption is required, and therefore offers a product appropriate for the needs of customers that must comply with these initiatives. We may mention among them the Sistema de Pagamentos Brasileiro (Brazilian payment system) and the Projeto Nota Fiscal Eletrônica (electronic invoice project), which employ HSM for safekeeping of the digital certificate.

Applications in virtually every operating system may benefit from HSM’s encryption services, making Net D-Fence the sole consistent solution for multi-platform scenarios.

The load balancing mechanism, transparent for the application, provides the solution with reliability and availability.

Net D-Fence’s virtually linear scalability allows new HSM units to be added to the solution according to demand, and with no impacts to the application.

A prize solution

HSM by NFe do Brasil’s Net D-Fence was awarded the Prêmio de Melhor Solução e Produtos para Gerenciamento de Risco e Segurança da Informação, the SECAWARD 2006, in the Best Domestic Technology class during the Security Week 2006, held in São Paulo.

During that year, Souza Cruz and Ultragaz were awarded two innovation prizes by B2B Magazine for using Net D-Fence’s HSM in implementing the NFe project.

In 2007 the award was granted owing to the Criptografia em Banco de Dados (database encryption) solution developed for Liberty Seguros. The award was granted by the Executivos Financeiros magazine.



 
Orkut Windows Live Facebook Del.icio.us Google