Babelway - Certificates and Signatures

Babelway qualified certificate

Babelway uses the Belgian electronic identity card (eID) of designated members of the Board of Directors of Babelway as the Babelway qualified certificates of Babelway. The Babelway qualified certificate is used in signing chain timestamps in the message archives.

User hub advanced certificates

A pair of “root” keys is generated by Babelway for each user hub on a secure machine, not connected to the network. The public key is included in a self-signed “root” user-hub certificate and stored in the hub keystore. The private key remains in a separate keystore on the secure machine.

The user-hub certificate is sent to the Babelway security hub and stored as any other message, guaranteeing its integrity and timestamping (see archiving section below)

Babelway creates 3 pairs of keys for each hub and, using the user-hub root certificate, associates them with 3 hub certificates:

a transfer pair, generated on the secure machine and stored in the keystore of the user hub. This certificate can be used by customers to sign outgoing emails with a structured file attached (EDI method) or to sign PDF or ZIP files that contain a message and are sent via an unsecured network (e-signature method)
a storage pair, generated on the secure machine and stored on the user hub. The public key is included in a storage certificate signed by the user-hub root certificate. This certificate is used systematically to sign all stored messages of the user hub.
An encrypting pair, generated on the secure machine and stored on the user hub. The public key is included in an encryption certificate signed by the user-hub root certificate. This certificate is used systematically to encrypt all stored messages of the user hub.

Babelway SSL certificate

Secure transfer certificate, associated with Babelway servers and certified by Thawte (Verisign). This certificate guarantees authenticity and confidentiality for exchanges using protocols: Web (https), SOAP (https), FTPs and FTPs Servers, AS/2 (https layer), whatever the customer hub performing the document exchange.

Babelway SSH certificate

Secure transfer certificate, used for exchanges using the sFTP protocol. This certificate is self-generated by Babelway with Babelway as the root authority. The certificate is ‘manually’ accepted by the exchange partner during the set-up of the sFTP connection.

Babelway AS/2 certificate

Secure transfer certificate, used for exchanges using the AS/2protocol. This certificate is self-generated by Babelway with Babelway as the root authority. The certificate is ‘manually’ exchanged between partners during the set-up of the AS/2 connection.

In addition to Babelway certificates, users can include/exclude external systems certificate in their own trusted certificate list (keystore).


Home \| Solution \| Prices \| Customers \| Partners \| About us \| News \| Contact us \|	Customer connection
SOLUTION > CERTIFICATESSIGNATURES
Babelway qualified certificate Babelway uses the Belgian electronic identity card (eID) of designated members of the Board of Directors of Babelway as the Babelway qualified certificates of Babelway. The Babelway qualified certificate is used in signing chain timestamps in the message archives. User hub advanced certificates A pair of “root” keys is generated by Babelway for each user hub on a secure machine, not connected to the network. The public key is included in a self-signed “root” user-hub certificate and stored in the hub keystore. The private key remains in a separate keystore on the secure machine. The user-hub certificate is sent to the Babelway security hub and stored as any other message, guaranteeing its integrity and timestamping (see archiving section below) Babelway creates 3 pairs of keys for each hub and, using the user-hub root certificate, associates them with 3 hub certificates: a transfer pair, generated on the secure machine and stored in the keystore of the user hub. This certificate can be used by customers to sign outgoing emails with a structured file attached (EDI method) or to sign PDF or ZIP files that contain a message and are sent via an unsecured network (e-signature method) a storage pair, generated on the secure machine and stored on the user hub. The public key is included in a storage certificate signed by the user-hub root certificate. This certificate is used systematically to sign all stored messages of the user hub. An encrypting pair, generated on the secure machine and stored on the user hub. The public key is included in an encryption certificate signed by the user-hub root certificate. This certificate is used systematically to encrypt all stored messages of the user hub. Babelway SSL certificate Secure transfer certificate, associated with Babelway servers and certified by Thawte (Verisign). This certificate guarantees authenticity and confidentiality for exchanges using protocols: Web (https), SOAP (https), FTPs and FTPs Servers, AS/2 (https layer), whatever the customer hub performing the document exchange. Babelway SSH certificate Secure transfer certificate, used for exchanges using the sFTP protocol. This certificate is self-generated by Babelway with Babelway as the root authority. The certificate is ‘manually’ accepted by the exchange partner during the set-up of the sFTP connection. Babelway AS/2 certificate Secure transfer certificate, used for exchanges using the AS/2protocol. This certificate is self-generated by Babelway with Babelway as the root authority. The certificate is ‘manually’ exchanged between partners during the set-up of the AS/2 connection. In addition to Babelway certificates, users can include/exclude external systems certificate in their own trusted certificate list (keystore).	Babelway is a true multi-tenant ‘Software-as-a-Service’ (SaaS). This means you control your own individual environment, in full flexibility and autonomy, without the need to buy and maintain any software or infrastructure. Powered by the ‘cloud’: quickly up and running, lower costs, more scalable, more secure, more reliable, automatic upgrades. And a monthly subscription instead of capital investments.