Watch Data

When you apply for a Digital Signature Certificate, (i.e. when you generate your 'Certificate Request'), a unique cryptographic key pair is generated. This key pair, along with your certificate, forms the basis of your digital identity and allows you to digitally sign and encrypt information.

Given the criticality of these cryptographic keys, it is extremely important to store them in a secure location that can be accessed only by you. Controller of Certifying Authorities vide order no CCA/DC(T)/2013 -98 (pt.) dated 25th October 2013 has made it mandatory that no Class 2 or Class 3 DSCs are issued where the key pair is not generated on a FIPS 140-1/2 Level 2 validated hardware Cryptographic Token.

Kyrah Tech promotes the usage of the following tokens:

  • Trust Key
  • ProxKey

The Trustkey USB Token is a hardware cryptographic module validated against the FIPS 140-2 at security level 2. It is a USB-based PKI, two-factor authentication token device. It provides digital signature generation/verification for online authentications and data encryption/decryption for online transactions. The user’s private and public key pairs can be generated and stored on the embedded chip. Trustkey has 32K EEPROM and 64K FLASH for the on-card file system divided into the basic areas and extended area. The user’s key pairs reside in the EEPROM. The private key can never be exported. The implementation of FIPS-Approved cryptographic algorithms are tested under the Cryptographic Algorithm Validation Program (CAVP).

Trustkey provides the USB interface that can connect the module to a General Purpose Computer (GPC) in a “plug and play” manner, which eliminates the need to install Smart Card Reader drivers. The WatchKey implements type A USB 1.1 (full speed) specifications and USB CCID (Circuit(s) Cards Interface Device) protocol which enables communication with ISO/IEC 7816 smart cards over USB.

The primary features are:
  • Secure and Light Cryptography Device
  • Supports USB 2.0
  • Portable
  • Affordable
  • Easy to Use


FIPS Leavel-2 Certified

The built-in TIMECOS Chip (64k bytes EEPROM) Complies with the most Stringent international standards, like ISO 7816 4,8,9 FIPSI 40-2 Certified and possesses the most reliable encrypting capabilities like DES,3DES and RSA.

Multi operating system support

proxKEY has extended compatibility with varied operating systems. Supports windows & Linux MAC OS*.

Plug & play version

A true “plug & play version” solution, proxKEY eliminates the need for pre-installation of desktop clients software, enabling online service providers and organizations to offer customers, partners and employees secure remote access to online services and business portals with the added benefits of digital signing capabilities. For consumers, the convenience of a robust yet simple “plug and-play” solution is unbeatable.

Easy driver installation

proxKEY offers plug and play simplicity for users with no end-point software installation. The token automatically prompts for software installation. No complexities even in case of varying operating systems and across 32 bit & 64 bit platform

Simplest user interface

proxKEY user interface is designed exclusively to meet the end need of the customers and the registration authorities (RA’s).the iconic representation of function exclusive features help better navigation across the software

In built CA root – no need to import root certificates

The driver utility automatically installs the roots of the certifying authority of trusted roots. Whats more, you don’t need to install the root certificates in token. We already have inbuilt in the token

Easy integration with application and websites

“proxKEY is the latest generation of USB token product built to facilitate high-speed data transmission and encryption operations based on the PKI technology applications and websites”

Admin PIN Protection

ProxKEY is ideal for corporate and internet security needs, Enabling organizations to expand their range of online business service while providing administering facility with the Admin PIN. The IT Administrator can regulate the usage of Certificate in case of Blocked tokens

Serial Number on Token for Identification

The PrePrinted serial Numbers on the token Designed to meet the Need of Tracking the Token and the USER Certificate

Certificate Expiry Notifications

The Admin Tools, prompts for the Certificate expiry well in Advance. Never lose due to Expired Certificate Validity. Helps In Easy renewal of certificate before time

Attractive Pricing

"ProxKEY is a very protable easy-to-use and cost-effective solution forstrong authentication, secure access and online transactions. The attractive price helps the token to cater to the massess for PKI Solutions”

ABS Polycarbonate Body

ProxKEY is made up of ABS Polycarbonate body to enhance its life and durability


Supported operating Systems

Windows 2000/XP/Vista/2003/Windows 7/Windows 8/Linux and Mac OS

Supported browsers

Internet Explorer 5.0+; Firefox 3.0+;Chrome; Netscape

API & standards Support

PKCS#11 v2.01, Microsoft CAPI 2.0, PC/SC, X.509 v3certificate storage, SSL v3

Memory Size & Data Retention

64K & At least 10 years

Security Certifications

FIPS 140-2

ISO specification

Support for ISO 7816-1 to 4, 8/9 specifications

On board security Algorithm

RSA 1024-bit and 2048-bit, DES, 3DES, MAC, SHA-1,SHA-256 , AES

Operating Temperature

0° C to 70° C (32° F to 158° F)

Storage temperature & Humidity rating

-40° C to 85° C (-40° F to 185° F) & 0-100% without condensation


USB type A; supports USB 1.1 and 2.0 (full speed and high speed)

Memory cell rewrites

At least 500,000

Weight and Size

Approx. 8g, 78mm x 23mm x 9mm

copyrigts © kyrah