Entrust Digital Signatures Help Secure More Than 18 Million U.S. ePassports

    Entrust PKI leveraged as security foundation for machine readable travel

    DALLAS, Dec. 19 /CNW/ -- When the U.S. Department of State decided to
move to digital passports -- also known as ePassports -- it also recognized
there was an opportunity to add another layer of security to these
credentials, and it turned to Entrust, Inc. (Nasdaq:   ENTU) to provide the
public key infrastructure (PKI)-enabled digital signatures.
    A function known as non-repudiation, the digital signature verifies that
the digital credential has, in fact, been issued by the U.S. Department of
State and that it has not been tampered with since its issuance. To date, the
U.S. Department of State has surpassed the 18 million milestone mark for
deploying the new ePassports.
    "The digital signatures on the new passports illustrate how PKI
technology is being used in a number of new applications, reinforcing PKI as
the gold standard for digital security," said Entrust Chairman President and
CEO Bill Conner. "It's really a 'PKI 2.0' trend we're seeing in the market
right now. More organizations are realizing the value and unprecedented
scalability PKI technology affords them when deploying and managing security
for digital identities and information -- especially on a mass scale like
    Since August 2006 only ePassports have been issued in the U.S. As
security guidelines to travel between the United States, Mexico, Canada and
the Caribbean now require a valid passport, the issuance of ePassports has
risen dramatically. This increase is expected to continue, with an eventual
production of 15 to 18 million ePassports annually.
    "Along with the U.S., we have been able to help secure ePassports and
national ID cards in Spain, Singapore, Saudi Arabia, New Zealand, Slovenia and
others," Conner added. "This security feature can also help prevent these
credentials from being counterfeited, which adds a greater level of assurance
to both the border patrol officials, as well as the travelers themselves."
    ePassport travel documents contain an electronic chip that stores
sensitive personal information that can be verified against the data on the
passport as well as against the individual at the border control point.
Although U.S. ePassports currently store a digital facial image, the documents
have the capability to securely include digitized photographs, fingerprints or
other biometrics. To protect these assets, PKI is an integral technology for
the security and verification infrastructure of ePassports. The Entrust
Authority PKI portfolio is one of the leading solutions to support this
    The Department of State has employed a multilayered approach to protect
the privacy of the information contained on the ePassport. In addition to a
metallic cover that prevents skimming or eavesdropping of the information
while the document is closed, Basic Access Control (BAC) technology is used to
"unlock" the data on the chip. A PKI digital signature enables alteration or
modification of the data on the chip to be detected and enables authorities to
validate and authenticate the data.
    Modular and fully integrated, the Entrust Authority PKI portfolio is
built on the foundation of Entrust Authority Security Manager, the
certification authority (CA) system responsible for issuing and managing
digital identities. Optional components help organizations manage the entire
lifecycle of PKI certificates. Approximately 1,000 government and commercial
organizations have purchased Entrust PKI solutions since Entrust brought its
first PKI to market in the 1990s.
    On the horizon, the next generation of ePassport technology is already
being considered. Enhanced security, known as Extended Access Control (EAC),
provides an additional layer of security to control access to sensitive
information, such as biometric fingerprints and iris scans on these
next-generation ePassports. EAC also specifies protocols for authenticating
the chip and inspection system to each other. Not based on the X.509 standard,
EAC will leverage a different type of certificate known as a card verifiable
(CV) certificate.
    The EAC concept was introduced by the International Civil Aviation
Organization (ICAO) in liaison with the International Organization for
Standardization (ISO). EAC technical details, including certificate profiles
and protocol specifications, are initially being defined by the Brussels
Interoperability Group (BIG) for use within Europe. Entrust actively is
participating in BIG as well as in the ISO Task Force on Security for
ePassports. These next-generation ePassports, using EAC, will be required by
all European Union (EU) Schengen member States by June 2009. Deployment
mandates for the U.S. have yet to be determined.
    For more information about the latest in ePassport technology, read
Entrust's latest white paper, "A Trust Infrastructure for ePassports," which
can found at this address:
    About Entrust
    Entrust (Nasdaq:   ENTU) secures digital identities and information for
consumers, enterprises and governments in 1,650 organizations spanning 60
countries. Leveraging a layered security approach to address growing risks,
Entrust solutions help secure the most common digital identity and information
protection pain points in an organization. These include SSL, authentication,
fraud detection, shared data protection and e-mail security. For information,
call 888-690-2424, e-mail entrust@entrust.com or visit http://www.entrust.com.
    Entrust is a registered trademark of Entrust, Inc. in the United States
and certain other countries. In Canada, Entrust is a registered trademark of
Entrust Limited. All Entrust product names are trademarks or registered
trademarks of Entrust, Inc. or Entrust Limited. All other company and product
names are trademarks or registered trademarks of their respective owners.
    This press release contains forward-looking statements relating to the
Entrust Authority PKI portfolio and a potential opportunity related to the
growth of ePassports, and such statements involve a number of risks and
uncertainties. Among the important factors that could cause actual results to
differ materially from those indicated by such forward-looking statements are
competitive pressures, changes in customer requirements, governmental
regulations, and the risk factors detailed from time to time in Entrust's
periodic reports and registration statements filed with the Securities and
Exchange Commission, including without limitation Entrust's Quarterly Report
on Form 10-Q for the quarter ended September 30, 2007. Entrust cautions
investors that it might not update any or all of the foregoing forward-looking

For further information:

For further information: Brooke Hamilton, Media Relations of Entrust, 
Inc., +1-972-713-5915, brooke.hamilton@entrust.com Web Site:

Organization Profile

Entrust, Inc.

More on this organization

Custom Packages

Browse our custom packages or build your own to meet your unique communications needs.

Start today.

CNW Membership

Fill out a CNW membership form or contact us at 1 (877) 269-7890

Learn about CNW services

Request more information about CNW products and services or call us at 1 (877) 269-7890