SecretAgent^® 6 for Windows,
Mac OS X, Linux, and Solaris

SecretAgent 6.0 is now supplied as a plug-in module within the cross-platform graphical user interface called the ISC Security Console. Additional modules allow the end-user or system administrator to manage their certificate keystores, LDAP directory queries, security policy creation tasks, and even their SpyProof! encrypted virtual disk partitions all from within the same framework. (Which modules are available depends on the software edition the user has licensed; see the Editions tab on the Overview page for details.)

 

Users can now open encrypted Word, Excel, and PowerPoint documents from within the appropriate Office application as well as create new documents and save them in encrypted form. Choosing to save a document as a SecretAgent archive brings up the standard New Archive window so that the user can select recipients, etc.

 

SecretAgent Menu and Toolbar As It Appears in Word 2007

 

SecretAgent now offers CMS as an alternative to the native .SA5 output format. You may create encrypted, or encrypted and signed, messages and exchange them with users of other RFC3852-compliant (S/MIME) applications (e.g., OpenSLL). Encrypted and/or signed message you receive in Microsoft Outlook Express can now be decrypted/validated using SecretAgent.

SecretAgent for Windows offers seamless integration with popular e-mail clients. Plug-ins for Microsoft Exchange, Outlook 2000/XP/2003, and Lotus Notes may be downloaded from the SecretAgent Support pages of our website.

SecretAgent also has the ability to send encrypted and/or signed documents using any Windows e-mail application that provides MAPI support.

Certificate Explorer, now integrated into the ISC Security Console framework, is a certificate store management utility that allows you to create and maintain various local and remote certificate stores and make them available within SecretAgent (and SpyProof!, if that is also installed).

The Credentials Manager imports X.509 certificates for total interoperability with a wide variety of commercial Certificate Authorities (CAs). It can also import and export PKCS#8 private keys and import PKCS#12 private keys, so they can be shared with your other applications.

Certificate extension processing and validation assure proper certificate use, while self-signed certificates allow users to exchange secured information without a formal PKI.

Certificate and CRL processing in all ISC products conform with RFC5280. SecretAgent 6.0.3 passed PKIX interoperability testing at DISA's JITC PKI Certification Lab at Ft. Huachuca and received formal certification of full compliance with the DoD PKI in February 2010. SecretAgent 5.6 first received DoD PKI interoperability certification in September 2002 (JITC compliance certification letter; JITC Interoperability Test Summary).

SecretAgent supports the following certificate and private key stores:

• internal proprietary keystore
• CAPI/CNG (Windows only)
• PKCS #11 token
• Entrust (Windows only)

Our certificate retrieval logic now supports administrator-configurable static and dynamic LDAP groups and parametrized LDAP queries. Users and/or administrators can configure live Active Directtory/LDAP queries for remote certificate directory access and optional CRL support with an auto-update feature.

SecretAgent allows you to create PBE-encrypted archives and send them to correspondents who can decrypt them using the free SecretAgent Reader edition once you have communicated the required password. In this mode, no certificates or private keys are required.

When asked to "inspect" any file (with a filename extension other than .sa5, .saa, or .sgn), the GUI now computes and displays the SHA-1 and MD5 message digests of that file. Command line builds can provide MD2, MD5, and SHA-1/256/384/512 message digests for any file.

SecretAgent Enterprise Edition's native support for ISC's Document Access Servlet (DAS) allows it to be used for server-mediated decryption (providing confidentiality within communities of interest). Role-based authentication and other new DAS-supported schemes are also available to SecretAgent clients when used in conjunction with CSP^id.

The PolicyAgent module integrated into Administrator Edition of the cross-platform ISC Security Console framework, allows system administrators to create and digitally sign policy settings documents for disemination to their user base. Policy files provide control over all cryptographic features and most operational settings for all other installed Security Console modules.