Architecture

Sytrust CertControl completely adheres to the internet standard „X.509 Internet Public Key Infrastructure Online Certificate Status Protocol (RFC 2560)” and adds some proprietary additions.

CertControl is mainly a plug-in for the Apache Webserver (see http://www.apache.org). Apache brings a stable and well tested network code for nearly every OS. Therefore it is the best platform for implementing „OCSP over HTTP“, the one and only way OCSP can be used today (according to RFC 2560). CertControl can be used on a wide variety of platforms. Main target OS are Windows NT, Solaris and Linux, development platform is Linux.

Using the module interface of Apache CertControl features built in SSL-Support (mod_ssl using OpenSSL), built in Load-Balancing (mod_backhand) and will offer you a lot more in the future. Even the support for Cryptography hardware to speed up the throughput can be done easily, as most Crypto boards already bring in support for Apache.