If you are a systems integrator wishing to add confidentiality, data integrity, and authentication to your custom solutions or an applications programmer needing to add encryption and digital signature functions to a new document management system or e-mail client, you may also wish to consider the various SA6API packages which provide, in linkable library form, essentially the same high-level cryptographic functions as the SA6CLI. If you need a low-level library of cryptographic primitives, consider the ISC CDKs.
The SecretAgent command line (SA6CLI) allows you to invoke SecretAgent 6's security functions, either interactively or in unattended mode, from a batch file, shell script, or third party application.
Supported operations include:
- RSA, DSA, or ECDSA key generation (with optional PKCS#10 certificate request output)
- file sign, encrypt, or sign and encrypt (encryption uses a hybrid cipher in which random symmetric keys are wrapped with specified users' public keys; RSA, DSA, and ECDSA signature schemes are supported; supplied symmetric ciphers include AES, DES, TDES, DESX, and EA2)
- file inspect, validate, or decrypt and validate
- secure file erasure
- X.509 version 3 certificate parsing and chain validation (with optional CRL checking)
- PKCS#12 import (conversion of an RSA/DSA PKCS#12 file into a certificate file and TDES-encrypted PKCS#8 private key file)
- a growing list of CA functions (e.g., issue/revoke certificates, etc.)
SA6CLI packages are available for the following platforms:
- Windows 9x/NT4/2000/ME/Vista/XP/7/8.x,
Windows Server 2003/2008/20012,
Pocket PC 2003 (Windows Mobile), Pocket PC 2002/ARM (WinCE)
- Android/Tegra 2 New!
- Solaris 7-10 (SPARC and x86)
- IBM AIX 4.x (Linux/x86/i64)
- RHEL 6+ and similar Linux distributions
- MacOS X (PPC)
- HP-UX 11.x (PA-RISC)
- HP-UX 11i (Itanium)
- Compaq Tru64 (Alpha)
- SGI IRIX 6.x (MIPS)
- Cray UNICOS (C90/T90/T3E)