XPS Software GmbH - products

The XPS CryptLib is a programmable interface to functions related to data security, data integrity and user authentication. The API is available for various systems and especilly for the IBM mainframe environment offers low cost and flexible alternatives to comparable hardware solutions. Being developed entirely in Europe also excludes this product from some US restrictions. CryptLib provides functionality around symmetric and asymmetric encryption, digital signature, X.509 certificates, S/MIME (PKCS#7) and PKCS#12 private key along with various support functions. During development, care was taken that this API be consistent across all supported platforms regardless of operating system or version. These differences have been reduced to a minimum. XPS CryptLib supports the RSA asymmetric encryption method which has become the standard for public / private key cryptography.

In the area of symmetric encryption methods XPS Cryptlib supports the new AES standard (Rijndael), DES, TripleDES, RC2, RC4 and Blowfish. MD2, MD5, SHA1 and HMAC functions to generate Hash values round off the functionality which is the basis for further Cryptlib services. Data integrity can be guaranteed by the use of digital signatures, which in some business areas (eg. banking) is required by law. XPS CryptLib provides methods of creating and verifying digital signitures using RSA. X.509 Certificates are a further application for public / private key cryptography. Import and analyses of information contained in X.509 certificates can also be achieved using the CryptLib. RSA Laboratories have developed standard cryptographic procedures, Public Key Cryptography Standards, or PKCS for short. XPS Cryptlib supports the most common of these; PKCS#7 (S/MIME) and PKCS#12 (Private Key). S/MIME provides for the secure transmission of EMails. XPS CryptLib allows use of content types 'Data', 'Signed-data', 'Enveloped-data' and 'Encrypted-data'.

PKCS#12 allows the secure storage of private keys and user certificates and is widely used in browser technology. XPS CryptLib provides methods for processing PKCS#12 files. Finally, the library contains some utility functions including an implementation of the compression processes GZIP and UNGZIP along with an interface to convert binary DER/BER coded ASN.1 objects nach Base64 (PEM).

Available for Win32, Linux, OS/2, OS/400 (iSeries), VSE/ESA, MVS/ESA, OS/390, z/OS (zSeries)
Generation of RSA key pairs of up to 4096-bit key length
Asymmetric Encryption with RSA
Symmetric Encryption with AES, DES, TripleDES, RC2, RC4 and Blowfish
Digital Signature with RSA in conjunction with Hash functions MD2, MD5 and SHA1
Process X.509 digital certificates
Generate and process S/MIME objects (PKCS#7)
Process PKCS#12 objects for key and certificate exchange
Compression and Uncompression of data with GZIP and GUNZIP
Conversion between binary DER/BER coded ASN.1 objects and readable Base64 (PEM) data
ISIS-MTT compatible