Snorkel TX is a Public Key Infrastructure (PKI) gateway to Internet applications that can be deployed with absolutely no change to the existing application set-up. The product is robust and scalable to support multiple Internet applications as well as a huge client-base. It was the first plug-and-play product in the security market to actually provide Identification & Authentication, non-repudiation and Integrity services to online transactions and continues to out-perform products of its genre with its plethora of features.

Snorkel TX is typically placed on the perimeter of the corporate network, between the Internet application and the Internet. Since the product is designed to protect the application server against transaction frauds only, all other network related protections like firewalls, IDS (Intrusion Detection Systems) etc., should still be in place.
Diagram.

Snorkel TX identifies all persons using their digital certificates. The product has an in-built Certificate Management System (CMS) that can issue certificates as well as manage Certification Revocation Lists (CRLs). For transaction-intense applications, the benefit of OCSP ( Online Certificate Status Protocol) is also available to ease the stress on the server.

Any organization can  thus cover their customers with either Snorkel issued digital certificates or any third party X.509 standard compliant digital certificates so as to ensure positive identification and authentication of clients during login time.

Additionally, Snorkel also sports an X.509 compliant SSL certificate to identify itself to the organization’s clients during online transactions. 

Access control information can be configured into Snorkel on the user-level, applications-level as well as URL-level. Snorkel authenticates users based on access control configuration.

Snorkel ensures non-repudiation of online transactions by enabling the client to digitally sign the transaction using a 1024-bit RSA key. The digital signature follows the PKCS #1 format. Snorkel also verifies the digital signatures, stores them in a database and archives them for future retrieval and inspection. This ensures possibility for legal recourse in the event of disputes.

The product enables digital signatures for both forms and file uploads.

Snorkel administrators can access Snorkel from any remote system including from the Internet. Snorkel identifies administrators by their digital certificates and uses an SSL channel for communication with both. Thus channel security is ensured. Snorkel supports the following cryptographic algorithms for channel security - DES, 3DES, MD5, RC4 and  SHA1.

All administrator activities are digitally signed and logged for future reference.

Snorkel produces comprehensive reports of all administrator activities as well as transaction details and associated digital signatures. Configurable filters ensure that the administrator is able to retrieve relevant information from the database with ease and flexibility.

All Snorkel produced logs can be archived, backed up and later retrieved when necessary.