Skip to content
Crypto

Features

Select certificate

CNA NG offers 4 basic methods to select a certificate for the needs of electronic signature or encrypting/decrypting:

  • Last used - section see Main screen, contains 3 last used certificates.
  • Files - section see Main screen, contains certificates loaded from files. Certificates with *.pfx or *.p12 extensions can be added. Use of a certificate from a file is usually possible only after entering the password that protects the private key.
  • System repository - section see Main screen, contains certificates loaded from the operating system repository. This section can also display certificates from smart cards and tokens the use of which usually requires entering a PIN.
  • Smart cards and tokens - section see Main screen, access to a smart card or token requires entering a PIN. The user may be asked to re-enter the PIN if the set time limit expires, see Settings. The available certificates are displayed and ready for selecting only after successful unlocking of the smart card or token. The availability of smart cards and tokens in the menu is conditional on the correct setting of PKCS#11 drivers, see Settings.

Search certificate

A search box (see Main screen) can be used for easier tracing of the certificate, while the following items are being searched:

  • entity to which the certificate was issued,
  • organization of subject,
  • certificate issuer,
  • file name,
  • token or smart card name,
  • token or smart card manufacturer
  • serial number.

Cryptographic operations

CNA NG allows implementing the following operations on data submitted:

  • Electronic data signature
  • Data encryption
  • Data decryption

Electronic data signature

Electronic signature requires performing the following steps:

  1. Selecting a certificate to which the user holds the corresponding private key.
  2. Performing the electronic signature operation by clicking the Sign button, see Main screen.

Data encryption

Data encryption requires performing the following steps:

  1. Selecting a certificate to which the user does not need to hold the corresponding private key, as encryption only uses a public key (certificate) of the peer.
  2. Performing the encryption by clicking the Encrypt button, see Main screen.

Data decryption

Data decryption requires performing the following steps:

  1. Selecting a certificate to which the user needs to hold the corresponding private key for decrypting.
  2. Performing the decryption by clicking the Decrypt button, see Main screen.

View item detail

For every cryptographic operation, it is possible to view details about the item(s) for which the operation is implemented by clicking the Details button, see Main screen.

Přehled podporovaných algoritmů

  • ASiC-S, XAdES v1.4.1
  • CAdES-BES
  • PAdES-BES
  • XAdES-BES v1.4.1

Check updates

The application automatically checks for available updates at startup. If a newer application version is found, it is made available for download, see Main screen. It is also possible to check for updates manually - in Microsoft Windows, via notifications and the CNA NG application icon; or via the top menu in Apple macOS.