Skip to content

TeskaLabs SeaCat PKI documentation

SeaCat PKI Logo

Welcome to TeskaLabs SeaCat PKI documentation.

TeskaLabs SeaCat PKI

TeskaLabs SeaCat PKI is a cybersecurity software product for Public Key Infrastructure (PKI) management. This application is designed for creating and managing X.509 certificates, certificate requests (CSR), RSA and EC private keys and Certificate Revocation Lists (CRLs).

It provides everything that is needed for operating Certificate Authority (CA).

Made with ❤️ by TeskaLabs

TeskaLabs SeaCat PKI is a product of TeskaLabs.

Screenshots

Here are examples of the TeskaLabs SeaCat PKI web application.

SeaCat PKI Screenshot 1 Picture: Management of the available private keys.

SeaCat PKI Screenshot 2 Picture: Creating a new certificate request.

Technical specification

The TeskaLabs SeaCat PKI consists of a web application and a microservice. The microservice provides a REST API. The data are stored in a MongoDB database. The TeskaLabs SeaCat PKI can use various Hardware Security Modules(HSM) thru PKCS#11 interface. The user authentication is done via OAuth 2.0 with OpenID Connect protocol.

The TeskaLabs SeaCat PKI is designed to be operated as High-Availability system (aka geographically distributed cluster). Single node deployment is also possible.

The product is multi-tenant, which means that each tenant has its own data (certificates, keys, etc.) and can be operated independently.

The product can be deployed as on-premises or delivered as a service.

Features

  • General

    • Web User Interface
    • Supported public keys: RSA, EC
    • PKCS#11 interface for Hardware Security Modules (HSM) and HSM-bound private keys
    • REST API
    • Multi-tenant: Can operate multiple Certificate Authorities (CAs) etc.
    • High-Availability
    • Geographically distributed cluster
    • High volume CA operations
  • X.509

    • Certificate v3 RFC 5280
    • CSR aka Certificate signing request aka PKCS#10
    • SCEP aka Simple Certificate Enrolment Protocol
    • TeskaLabs SeaCat extension to X.509
  • C-ITS Security (ETSI ITS-G5), C-V2X Security (LTE-V2X)

  • User authentication and authorization

Note

TeskaLabs SeaCat PKI is built using Python, cryptography.io and OpenSSL