KMS

•Key Import & Export: Support key import in various formats and roles.

•Key Management: Support key generation, storage,distribution, backup, revocation, archiving and recovery

•Key Lifecycle Management: Support full life cycle management of keys, support key expiration reminder and key update mechanism.

•Data Encryption & Decryption: Provide encryption and decryption protocols and algorithms based on SUITE0, SUITE1, and SUITE2 and authentication verification services.

•Multi-algorithms: AES: GCM, WRAP, CBC, ECB;3DES:CBC;RSA: encryption, decryption, signature and verification;ECC: P-256, secp384r1, secp256k1, signature and verification, key negotiation;HASH: SHA related algorithm; Certificate: CSR generation, certificate generation.

•Reliable Security: This includes dealing with the generation, exchange, storage, use,crypto-shredding (destruction) and replacement of keys. It includes cryptographic protocol design, key servers, user procedures, and other relevant protocols.

•High-Availability: Supports clustering for 24x7x365 availability with automatic

•load balancing and off-site mirrors that ensure failover and disaster recovery.

•Standardization: Supports cryptographic algorithm standard based on DLMS62056 SUITE0, SUITE1, and SUITE2.

•Easy Extensibility: Based on modular design, the system can easily adapt to the needs of various encryption scenarios.