DigiCert, Inc., one of the world’s renowned provider of TLS/SSL, IoT and PKI solutions, helps companies provision and manage digital certificates at any point during the product lifecycle with the new release of the IoT Device Manager. Manufacturers can now embed certificates on chipsets prior to and during manufacturing, or directly to an edge device, for complete end-to-end device security. IoT Device Manager is built on DigiCert ONE, which enables rapid, automated PKI deployment as a customer-managed, on-premises or cloud solution, or managed by DigiCert for any environment. A challenge that manufacturers face when implementing PKI is figuring out how to provision certificates to devices during the manufacturing and assembly process. Changing manufacturing processes by implementing new technology can be a time consuming and expensive undertaking. Digital certificate data To address this challenge, DigiCert provisions authentication and signing certificates to chips prior to arriving at the manufacturing plant for assembly. Having certificates pre-provisioned allows manufacturers, without changing any processes, to achieve the benefits of device identity, strong mutual authentication, and secure boot and over-the-air updates through the use of digital signatures. Metadata on the device's characteristics can be loaded into DigiCert IoT Device Manager Additionally, as manufacturers look for more device-level data and management capabilities, metadata on the device's characteristics - including serial numbers, batch numbers and digital certificate data - can be loaded into DigiCert IoT Device Manager to support full device management capabilities throughout a device's lifetime. Threat response platform “Signing is a critical component of strong IoT security, and manufacturers are continually signing a variety of programming elements to ensure the integrity of interactions with their devices, and the data coming from it,” said DigiCert SVP of Product Brian Trzupek. “Together with assuring the identity of the device at the time of manufacture and enabling certificate requests directly from any deployed device, IoT Device Manager is part of a holistic security and threat response platform for IoT device security.” IoT security requirements Manufacturers are simplifying the complexity of IoT deployments by pushing more activity to the edge device. To support this transition, a device-centric API in the IoT Device Manager enables unique devices to request, update and manage the lifecycle of certificates. Complicated and expensive service layers that take time and effort to develop are no longer necessary for certificate provisioning and management. This feature allows manufacturers to simplify deployments, accelerate time to market and reduce the overall risk of their PKI. IoT Device Manager uses a container-based, cloud-native implementation to: Allow organisations to provision and embed device identity at any stage of the device lifecycle, from the factory to device deployment in a variety of environments to provide trusted and secure operations. Simplify device identity, authentication, encryption and integrity with a single click and marry device data visualisation with cryptographic, manufacturing and factory process data. Support standards-based interoperability with third-party manufacturing and provisioning systems and enable technology partners to address a variety of use cases for today’s IoT security requirements. Private key management Secure Software Manager can be utilised together with IoT Device Manager to: Deploy modern PKI automation for frictionless secure code signing and private key management. Sign all files at any stage of the development cycle, not only for specific code but also clusters and containers. DigiCert ONE is a PKI management platform developed with cloud-native architecture and technology to be the PKI infrastructure service to solve today's security challenges. Released in 2020, DigiCert ONE offers multiple management solutions and is designed for all PKI use cases. Its flexibility allows it to be deployed on-premises, in-country or in the cloud to meet stringent requirements, custom integrations and airgap needs. It also deploys extremely high volumes of certificates quickly using a robust and highly scalable infrastructure. DigiCert ONE delivers end-to-end centralised user and device certificate management, a modern approach to PKI to provide trust across dynamic IT architectures.
Enterprise PKI Manager in DigiCert ONE from DigiCert, Inc., a globally renowned provider of TLS/SSL, IoT and PKI solutions, supports security for today’s increasingly remote workforces via certificate automation to authenticate employees and their devices at scale, and encrypt data. Working from home is here to stay, with Gartner reporting that 74% of CFOs are looking to shift some employees to permanent remote work. Digital certificates are a proven, widely adopted solution for strong authentication and are well supported by a variety of devices, platforms and operating systems. Many organisation, including the world’s best brands, use private CA systems within their networks, relying on manual certificate management that often leads to errors or shutdowns and overworked teams. Offers smart automation Enterprise PKI Manager makes it easy for organisation to manage and use digital certificates to secure all employees, devices and data that connect to the network, and it can be deployed as a customer-managed on-premises or cloud solution, or managed by DigiCert. “Enterprise PKI Manager offers the smart automation and integration capabilities enterprise organisation need to safely support workers wherever they choose to connect to the network,” said DigiCert SVP of Product Brian Trzupek. Mobile device management Enterprise PKI Manager offers a flexible, unified approach to PKI management at scale “Customisable and compatible with a variety of mobile device management solutions, Enterprise PKI Manager enables our customers to manage their entire remote workforce and devices from one PKI system to better protect users and their devices, as well as the data, email and applications that they rely upon.” Enterprise PKI Manager offers a flexible, unified approach to PKI management at scale. With Enterprise PKI Manager, organisation can enable digital signing for large volumes of users and devices quickly, utilising a containerised, cloud-native architecture that rapidly deploys digital certificates on-demand. Cloud-native architecture Enterprise PKI Manager gives organisation the ability to: Enable API-based automated device and user enrollment with digital certificates Integrate with leading MDM/UEM platforms for secure device enrollment and management Secure emails with authentication and encryption via S/MIME certificates Enable secure document signing across the organisation's physical and virtual network environments Integrate with the other DigiCert ONE workflow managers for secure code signing for software and IoT device security DigiCert is continually innovating to develop comprehensive solutions for work-from-home and remote access use cases, and integration initiatives are in place with a variety of pioneering MDM, UEM and smart card partners. Enterprise PKI Manager is built on DigiCert ONE, a PKI management platform developed with cloud-native architecture and technology to be the PKI infrastructure service to solve today's security challenges. Device certificate management Released in 2020, DigiCert ONE offers multiple management solutions and is designed for all PKI use cases. Its flexibility allows it to be deployed on-premises, in-country or in the cloud to meet stringent requirements, custom integrations and airgap needs. It also deploys extremely high volumes of certificates quickly using a robust and highly scalable infrastructure. DigiCert ONE delivers end-to-end centralised user and device certificate management, a modern approach to PKI to provide trust across dynamic IT architectures.
DigiCert, Inc., the globally renowned provider of TLS/SSL, IoT and PKI solutions, has introduced Secure Software Manager, a modern way to automate and manage PKI security across CI/CD pipelines. Secure Software Manager Secure Software Manager makes it easy for enterprises to integrate secure key management for code signing into their development processes, while delegating cryptographic operations, signing activities and management in a controlled and auditable way. The drive for agility leaves product engineering organisations exposed to internal threats and hackers. Stolen code signing certificates and their associated keys have led to many high-profile attacks, where these keys have been used to sign malware and commit fraud. Cryptographic asset protection Secure Software Manager removes the burden on engineers for cryptographic asset protection DevOps teams need signing solutions that fit within their workflows and make signing keys easily accessible when pushing code, but many orchestration tools do not include key protection. Secure Software Manager removes the burden on engineers for cryptographic asset protection, enabling them to sign with confidence and freeing them to do what they do best: develop and deploy software quickly and efficiently. It provides: Command line tools that easily integrate with CI/CD systems. Automatic signing of packages, binaries and containers on every merge to master when authorised. RESTful APIs for custom integrations. Simultaneous signing of Docker containers and software code, adding trust to every step of process. Strengthening security around key accessibility Using Secure Software Manager reduces the risk of key theft and misuse by strengthening security around key accessibility and storage. Hash signing lets developers protect intellectual property, as no files are uploaded to the cloud. Additionally, IT organisations must comply with a variety of rapidly changing regulations that require robust key protections across increasingly dynamic and orchestrated environments. They also require full reporting and auditing capabilities to ensure compliance. Secure Software Manager enables: Secure private key management in hardware security module (HSM) and offline mode for keys when not signing. Flexible deployment via SaaS or on a public or private datacenter. Centralised user management with flexible, role-based permissions and single sign-on (SSO). Audit trail of signing activity for forensics and full accountability. Data and cyber security Secure Software Manager meets customers where they need to be, whether on-premises or in the cloud" “Secure Software Manager meets customers where they need to be, whether on-premises, in the cloud, or in hybrid environments through the DigiCert ONE platform,” said Senior Vice President of Product (Emerging Markets), Brian Trzupek, at DigiCert, Inc., adding “Our customers can enjoy complete automation or tailor the solution to support the degree of functions they require and be assured of seamless integration with their familiar CI/CD tools and processes.” Beyond authenticating devices for the IoT and enterprise networks with certificates issued from DigiCert ONE managers, organisations can also secure code and firmware. This includes enabling secure over-the-air updates throughout the lifetime of the device, using Secure Software Manager. Built on DigiCert ONE, PKI management platform Secure Software Manager is built on DigiCert ONE, a PKI management platform built with a new architecture and software to be the PKI infrastructure service for today’s modern cloud-native challenges. Released in 2020, DigiCert ONE software platform offers multiple management solutions and is designed for all PKI use cases. Its flexibility allows it to be deployed on-premises, in-country or in the cloud to meet stringent requirements, custom integrations and air gap needs. It also deploys extremely high volumes of certificates quickly using robust and highly scalable infrastructure. DigiCert ONE delivers end-to-end centralised user and device certificate management, a modern approach to PKI to provide trust across Kubernetes clusters and dynamic IT architectures.