Ссылка на старый сайт

FASTI

The Transport System “FASTI” is designed for the secure exchange of information among the system’s clients, the organization of electronic document workflow based on the standards adopted within the system, or the creation of a user’s own electronic document workflow system.

Section image
FASTI VIDo FAQ Errors when working with VIDo Standard "FASTI" Contracts Tariffs

Scope and Purpose

The “FASTI” system is designed to address the following tasks:

  • Ensure guaranteed delivery of information.
  • Invariance concerning transported information.
  • Comprehensive solution to information security tasks.

The system is open according to the specifications of communication and cryptographic software: it has a software interface (API) for user applications.

 

Main Features of the “FASTI” System:

  • Formation of messages in CMS format (encrypted according to RFC2630/Section 6 Enveloped-data Content Type and signed according to RFC2630/Section 5 Signed-data Content Type).
  • Encryption of “client-to-client” messages.
  • Compression of files attached to the message using the BZip-2 algorithm.
  • Ability to attach an unlimited number of files to a message while preserving their attributes and directory structure.
  • Option to choose an unlimited number of message recipients.
  • Interaction with cryptographic modules compliant with the Microsoft CSP (Cryptographic Service Provider) interface requirements.
  • Interaction with the Public Key Infrastructure (PKI) infrastructure. Retrieval of user certificate information via the LDAP protocol according to RFC2459 (Internet X.509 Public Key Infrastructure. Certificate and CRL Profile).
  • Sending and receiving messages according to the SFTP protocol with cryptographic authentication of all user commands and server responses.
  • Generation of confirmations in CMS electronic document format upon receiving messages from users by nodes.
    Issuing protocols of the system’s components and users, billing statements, and information on the status of system transport nodes.

Architecture and Topology:

The system uses a domain architecture, star topology. All system components are subjects of secure information exchange and clients of the PKI certification center represented by user nodes.

Primary key information is created and distributed centrally by the Certification Authority NPK. Secret key information is derived from the primary key information on user computers. Operational distribution of open key information in the system is carried out by special services of the Certification Authority NPK, ensuring the storage, verification, and distribution of client certificates containing open key information and servicing the transport nodes of the system during their operation. All system components provide local interactive input and secure storage of secret keys in the computer’s RAM during their operation. The system ensures the integrity, cryptographic protection, and guaranteed delivery of information for system clients.

 

User Software Composition:

To use the “FASTI” system on a user’s personal computer, the following is required:

  • The user needs to obtain a key certificate published in the global certificate store.
  • Install the “Tumar CSP” software with corresponding plugins (software components allowing the implementation of additional functions) for key information storage devices.
  • Install the client application “VIDO5” designed for secure information exchange.

Information Transported:

The unit of information transported in the system is a file. All transported files in the system are represented by two types:

  • User files or information files created outside the system.
  • Delivery confirmation files created within the system.

To implement mechanisms for guaranteed information delivery, each transported file in the system is assigned a unique transport reference number throughout the system’s existence – a transport reference. The addressing and routing system in “FASTI” is built based on the principles of DNS/IP using DNS protocol services.

 

Minimum Hardware and Software Requirements:

  • Personal computer/server: Dual-core processor with a clock frequency of 2 GHz, at least 4 GB of RAM.

— 20 MB is required for program installation.

— Ensure free hard disk space, considering the volume of information transmitted to “VIDo5” software.

 

  • 32/64-bit Windows 7/8/8.1/10 operating system.
  • Installed and configured “TUMAR-CSP” software version 6.
  • The computer/server must have standard means necessary to establish a connection via the TCP/IP protocol.