Proving the Business Case for the Internet of Things

DigiCert PKI tools help manage IoT devices

Steve Rogerson
February 5, 2020
Utah-based DigiCert has announced two public key infrastructure (PKI) tools – IoT Device Manager and Enterprise PKI Manager. Both use a container-based, cloud-agnostic implementation that ensures fast and flexible on-premises, cloud and hybrid PKI deployments.
These offerings are built on the DigiCert One platform, a holistic approach to modernising PKI management that is said to set a standard for fast and flexible PKI deployments. Based on modern software design and engineering, DigiCert One delivers end-to-end centralised user and device certificate management for various deployment models and PKI use cases.
"As early adopters of IoT Device Manager and Enterprise PKI Manager, we are looking forward to their ease of use and flexibility for our many initiatives, including our IoT and connected city solutions," said Mark Stevens, technical lead at British Telecom PKI and Cryptography. "PKI applications that we've used in the past have required weeks of long hours to deploy on-premises, but with DigiCert One, after configuring our docker and network environment, we were up and running the PKI managers in about 20 minutes. British Telecom is excited and looking forward to the benefit of DigiCert One's multiple functionalities and the scalability it will bring for our customers."
IoT Device Manager lets device manufacturers provision and embed device identity at any stage of the device lifecycle, from the factory to device deployment on-premises, in the cloud or hybrid environments. It simplifies device identity, authentication, encryption and integrity with a single click, and it can marry device data visualisation with cryptographic, manufacturing and factory process data. There is support for standards-based interoperability with many third-party manufacturing and provisioning systems.
Enterprise PKI Manager allows IT teams to deploy seamlessly and transparently identity, authentication and access to large user populations quickly and with little to no end-user interaction. They can have flexibility in deployment models, supporting user deployments in private or public cloud, air-gapped environments, or completely managed by DigiCert. They can also customise certificates and tailor deployments to their infrastructure and needs and manage out-of-the-box and create custom CA hierarchies.
"Today's release of the IoT Device Manager and Enterprise PKI Manager in DigiCert One meets customers where they want to be with fast, flexible and automated PKI deployment across global networks and within geographies of differing regulatory standards," said DigiCert CEO John Merrill. "Whether deploying to their own private or public clouds, or within air-gapped or on-premises networks to meet in-country compliance requirements, IoT Device Manager and Enterprise PKI Manager give customers the tools they need to integrate PKI services that secure their device connection points."
Developed based on feedback from enterprises and IoT device manufacturers, DigiCert One is said to meet practical organisational needs, enabling them to:

  • integrate PKI services with established business processes and third-party vendors via a feature-rich Rest API;
  • facilitate a rapid rollout of PKI services in minutes instead of days, leveraging environment parity and container portability to set up private or public clouds or on-premises quickly; and
  • reduce total cost of ownership and complexity with a modern scalable architecture and containerisation strategies to provide a high availability PKI platform for their company.
With a continuous deployment model, DigiCert plans to introduce additional PKI managers to DigiCert One, such as secure email, document signing, object signing and individual signing. Regular updates ensure users are always running the most up-to-date software with the latest functionality.