Nexus invests heavily in its certificate authority (CA) platform for its 20th anniversary
Identity and security company Nexus Group has boosted the development team of its certificate authority (CA) platform Nexus Certificate Manager by 50 percent for its 20th anniversary, and announces new functionality and quality guarantees. “The digitalization of society increases the demand for trusted identities for people and things, and PKI has seen a major upswing in popularity – that is why we invest heavily in Certificate Manager,” says Magnus Malmström, Vice President Product at Nexus.
The security method public key infrastructure (PKI) is used to implement strong authentication, data encryption and digital signatures. Certificate Manager is a flexible and scalable certificate authority (CA) software platform, used to issue, validate and manage the electronic identities (eIDs) in a PKI solution.
“Certificate Manager has an amazing track-record, and is used by numerous organizations to enable trusted identities for workforce members, online customers, citizens and things. It feels great to be able to announce that we are boosting the quality and functionality even more,” says Malmström.
Certificate Manager now issues qualified digital certificates according to the EU regulation eIDAS. It also supports all major certificate enrollment protocols, such as CertEnroll, SCEP, CMP, CMC and soon EST.
“We have also modernized the user experience with a new web interface, and we have added a REST API, which enables customers and developers to build customizations for revocation and registration of devices more easily,” says Malmström.
Certificate Manager supports multitenancy, which means that several different certificate authorities can use the same instance of the software to implement several parallel, independent eID solutions.
“For additional eID and PKI token lifecycle management, Certificate Manager can also be used together with Nexus PRIME. We have standardized the integration.”
Certificate Manager is also in the process of being recertified for Evaluation Assurance Level 4+ (EAL4+) according to the international standard Common Criteria for Information Technology Security Evaluation (CC).
“In addition to that, our organization is creating an information security management system, following the information security standards ISO/IEC 27002 and ISO/IEC 27001:2013,” says Malmström.