Boletín informativo

¿Prefieres recibir las noticias de KeyTalk directamente en tu correo electrónico? ¡Regístrate en nuestro boletín informativo!

¿Preguntas?

¿Alguna pregunta específica? Tal vez las preguntas frecuentes o las descargas te ayudarán más.

¿Otras preguntas o simplemente te preguntas qué puede hacer KeyTalk por tu organización? No dudes en contactarnos.

También ofrecemos a nuestros clientes soporte 24/7.

Sí, KeyTalk admite varias CA: privadas, como Microsoft Active Directory Certificate Server, y públicas, como GMO GlobalSign o DigiCert QuoVadis.
Sí, KeyTalk desarrolla funcionalidades e integraciones según la demanda del cliente y el caso de negocio. Si una integración requerida aún no es compatible y es técnicamente viable, puede lograr una integración exitosa junto con la Unidad de Negocio de KeyTalk. Esta integración se integrará completamente en nuestro software y, por lo tanto, se mantendrá.
Sí, KeyTalk puede generar claves privadas con suficiente entropía, como parte de las Solicitudes de Firma de Certificado (CSR) generadas centralmente. Estos pares de claves asimétricas pueden almacenarse en su propia base de datos de gestión cifrada con AES256 o en un Módulo de Seguridad de Hardware (HSM) vinculado. En cuanto un par de claves caduque o deje de ser válido, la plataforma KeyTalk regenerará este par de claves y el certificado asociado, ya sea de forma automática o semiautomática mediante un flujo de trabajo.

Nuestra definición de certificados X.509 de corta duración: certificados cuya duración no supera el tiempo que tarda en actualizarse y distribuirse una Lista de Revocación de Certificados (CRL) desde su emisión. ¿Suele trabajar con CRL que se actualizan una vez al día? En ese caso, los certificados de corta duración tienen una validez de 24 horas menos. Los radiadores del Protocolo de Estado de Certificados en Línea (OCSP) se actualizan, en teoría, mucho más rápido que las CRL, pero en la práctica, suele tardar más que el tiempo promedio en actualizar una CRL para determinar la necesidad de incluir un certificado en un OCSP, incluso hasta su inclusión. Esto significa que los OCSP no suelen ser más prácticos que una CRL cuando se trata de certificados X.509 de corta duración.

KeyTalk puede asignar cualquier duración a un certificado que se va a emitir, siempre que la autoridad de certificación de destino lo admita. La validez mínima que KeyTalk puede asignar a un certificado es de 1 segundo.

Downloads

Windows: Enterprise KeyTalk agent

Version: 7.8.0

Download: Default

Hashcode: SHA256: b12eddaaa7fdc470323a2551d90f7b4077bf97e60fc11e2a6ae2d1deeae15027

KeyTalk Enterprise agent 7.8.0 brings the latest KeyTalk functionality to Windows 10 and 11, as well as Windows Server 2016 – 2022 with IIS 10 and IBM WebSphere 9.x and any other application you can provide a custom PowerShell script for. All default Windows certificate store supporting browsers are supported including Google Chrome, Firefox, Microsoft IE, Edge, Opera, Brave, and Safari.

Enterprise version 7.8.0 adds business logic to support CA/B Forum regulations for S/MIME for Business when using the internal KeyTalk InternalDB as your RA, as well as the ability to provide custom PowerShell scripts for confoguring a certificate and key for any target server application.

This latest release added support for automated recent and historic Shared Mailbox S/MIME fetching, installation and configuration for Outlook

Our latest user interface simplified Secure Email Service Windows agent for use with KeyTalk’s HSES can be found here (SHA256: 4a59f179d43dde8f2d966365c5ab44b76d0c438a09d248e5e06b80b3412679d6

Mac OSX KeyTalk client

Version: 7.7.9

Download: App Store

Hashcode: https://keytalk.com/support#

► Manual

KeyTalk agent for Mac version 7.7.9 brings the latest KeyTalk functionality to Apple’s OSX devices.

It supports the latest CA/B forum requirement for public trusted S/MIME issuance.

Our optional hardware recognition adds an additional factor on top of your existing authentication. This client is compatible as of KeyTalk virtual appliance 5.6.5.

Download the most recent DMG here SHA256: cefdd931289eadbe30c197bbc4240987146fba045cc5b85ca10a8a8301d76bc3

Download the most recent PKG here SHA256: 53ef8f07e0f35d70edc50d37c22deb084a289f9eeaf94ae6274f80895f7e4408

Download the previous version 6 DMG here SHA256: 6f385578afeb234899f98b3883a741dcd666d3e091d9d795fe91e614a3d1c350

Linux and Apache/TomCat KeyTalk agent

Version: 7.5.14

Download: Default

Hashcode: https://keytalk.com/support#

KeyTalk’s command prompt client 7.5.14 brings KeyTalk issued and managed certificates to various Linux OS.

7.5.14 for Ubuntu 22.04 adds extended TPM support and TPM key attestation, as well as Chrome bowser support, and supports Kerberos authentication incl automated renewal.

KeyTalk’s optional hardware recognition leverages your existing authentication, and enables you to easily recognize BYOD and Corporate devices to belong to only specific employees, partners, and customers.

Ensure you have a recent configuration file (RCCD) as this client makes use of the YAML standard not found in older KeyTalk configuration files.

__PRESENT

KeyTalk virtual application server OVF/VMDK for VMware and AWS

Version: 7.6.1

Download: Default

Hashcode: https://keytalk.com/support#

KeyTalk 7.6.1 (ZIP = 25.4 GB) virtual appliance (Ubuntu 22.04 LTS based) in OVF/VMDK format brings you the latest KeyTalk X.509 certificate automated life-cycle management and seamless enrollment for client, server and Internet of Things devices. For your internal private CA’s and public CA’s.

Use it to automate replacing your X.509 certificates on any device, and always have up to date strong keys and certificate meta data in your SSL/TLS certificates.

Customers and partners can install this virtual appliance onto their VMWare ESXi environment.

For AWS, simply login to your AWS account, search in public AMI for KeyTalk and launch the KeyTalk CKMS AMI from any region.

 

Need a production or trial license? Just contact your preferred KeyTalk partner or email us, and we will have you up and running in no time.

To decrypt any created encrypted native KeyTalk backups or Problem reports, you will need a Linux system running this AES-256-GCM decryption tool.

Do check if a new firmware update exists on this page to upgrade this virtual appliance to the latest greatest version.

 

For High Availablity clustering, you will need a Load Balancer and a MySQL DB to store the shared data between multiple KeyTalk virtual appliance front-ends.

The latest single (ie non-clustered) stand-alone MySQL 8 virtual appliance (ZIP 5.16 GB), compatible as of KeyTalk firmware 7.6.1 can be downloaded here.   SHA256: EE8FF29934D9AB82E12C169B90C7F81706388A9402897358AD80E17EC116DE4D

Should you already have a single or clustered MySQL DB in your network, or wish to make use of an Azure Flexi Server, you can use this documentation to setup your own DB.

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

KeyTalk virtual application server VHD for Azure and Hyper-V

Version: 7.6.1

Download: Default

Hashcode: https://keytalk.com/support#

KeyTalk 7.6.1 (ZIP = 31.2 GB) virtual appliance (Ubuntu 22.04 LTS based) in VHD (GEN-1 DISK) format brings you the latest KeyTalk X.509 certificate automated life-cycle management and seamless enrollment to client, server and Internet of Things devices. For your internal private CA’s and public CA’s.

Use it to automate replacing your X.509 certificates on any device, and always have up to date strong keys and certificate meta data in your SSL/TLS certificates.

Customers and partners can install this virtual appliance onto their Hyper-V and Azure environment.

 

Need a production or trial license? Just contact your preferred KeyTalk partner or email us, and we will have you up and running in no time.

To decrypt any created encrypted native KeyTalk backups or Problem reports, you will need a Linux system running this AES-256-GCM decryption tool.

Do check if a new firmware update exists on this page to upgrade this virtual appliance to the latest greatest version.

 

For High Availablity clustering, you will need a Load Balancer and a MySQL DB to store the shared data between multiple KeyTalk virtual appliance front-ends.

The latest single (ie non-clustered) stand-alone MySQL 8 virtual appliance (ZIP 7.66GB), compatible as of KeyTalk firmware 7.6.1 can be downloaded here.   SHA256: 2BFC27E002518E7EE11133523D08FB7684B1780A40C5E69808D0CC2EBF45C34F

Should you already have a single or clustered MySQL DB in your network, or wish to make use of an Azure Flexi Server, you can use this documentation to setup your own DB.

__PRESENT

__PRESENT

__PRESENT

__PRESENT__PRESENT__PRESENT__PRESENT__PRESENT__PRESENT__PRESENT

__PRESENT

KeyTalk firmware upgrade

Version: 7.8.5

Download: Default

Hashcode: SHA256: 9dc9e7d94a3671c9c24de74cfa180835cfb2b8179f8510d690efe478e1423d7d

KeyTalk’s 7.8.5 firmware update release (1.06 GB) upgrades your KeyTalk 7 virtual appliance to the latest production release .

It additionally updates your connected KeyTalk MySQL Db provided it is connected to the KeyTalk virtual appliance you upload this firmware update to.

For the full details of this release kindly read the Release Notes.

Before upgrading always back-up / snap-shot your KeyTalk environment (server and Db)!

Need the last KeyTalk 6.6.3 firmware (720 MB), you can download it here.

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT__PRESENT__PRESENT__PRESENT__PRESENT__PRESENT

__PRESENT

__PRESENT

__PRESENT__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT

__PRESENT__PRESENT__PRESENT__PRESENT__PRESENT

__PRESENT__PRESENT__PRESENT

Although we were one of the first customers to choose the combined S/MIME Management and Automation Service from GlobalSign & KeyTalk and we had to overcome some initial hurdles, we got fantastic support from the KeyTalk team and the service is working perfectly now. I would absolutely recommend their S/MIME Management and Automation Service to any company that needs easy-to-use end-to-end secure email communication. — Matteo Snidero, Head of IT @ Finance in Motion