PRODUCT DESCRIPTION

DBsign is a digital signature solution that enables applications to incorporate digital signature security into their processes.

The evaluated security functionalities of the product include:

• Digital signing of data;
• Verification of digitally signed data for data stored within a database;
• Non-repudiation of origin; and
• Auditing for operations performed on data stored within a database.

The Target of Evaluation (TOE) is a digital signature solution that includes a set of APIs and consists of two portions; a client and an application/database server portion.

The client portion of the TOE is installed to an IT environment system that includes:

• At least 1 Network interface card;
• Any one of Microsoft Windows 98, Me, NT, 2000, XP, or 2003; and
• Any one of Oracle JInitiator versions 1.1.7.31 or higher, or the Sun Java Plugin 1.3 or higher.

The application/database server portion of the TOE is installed to one or more IT environment systems, together that includes:

• At least 1 Network interface card per system;

• Any one of Sun Solaris 8 (SPARC), MS Windows 2000, XP, 2003, or Red Hat Linux 6.2 or higher per system;
• Oracle RDBMS 8.1.6 or higher with Oracle JServer enabled on database system; and
• Oracle Forms 6i or higher or Oracle Forms 6i Server (or 9i Application Server) or higher on application server system.

The IT environment (the OS of the client and application server and the database itself) provides these supporting functions that are leveraged by DBsign. This functionality has not been evaluated but is needed for the operation of the TOE.

• Mechanism for review of audit records (stored within the database and viewable via DBsign Administration Tools);
• Mechanism for generation and destruction of cryptographic keys; and
• Source of timestamps for auditing of security-relevant events.

Vendor Information

Gradkell Systems, Inc.
Grady Gaston, VP
866.472.3535 X18
866.472.3535 (Fax)
ggaston@gradkell.com

http://www.gradkell.com