Nexus’ Smart ID PKI platform obtains Common Criteria EAL4+

As a formal evidence of its strong security and high quality, Nexus’ PKI platform that enables digital trust in Workforce and IoT solutions has been certified in compliance with Common Criteria EAL4+. With its enriched feature set that includes certificate automation and extended integration capabilities, Nexus now offers the most modern PKI platform available. 

Nexus’ certification enhances digital trust

The Common Criteria certification means that Nexus’ products and their security-related functions have been verified in an independent evaluation and quality control. It is an official proof that the processes to develop and evaluate the products are being conducted in a secure and repeatable manner.

“With this certificate, we make it much easier for our customers to prove the security and quality of their solutions, for example when they go through security certifications and auditing,” says Martin Furuhed, product owner of the Smart ID PKI platform and PKI expert since more than 20 years.

The certified versions are Certificate Manager 8.0.0 and OCSP Responder 6.0.2.

The Common Criteria certification provides a guarantee for quality, reliability and security and is often required due to increased demand on information security driven by national or international regulations. This is important and in line with Nexus’ work to protect business-critical environments in large organizations.

Certificate automation and simplified integration

Here are some other new features of Nexus’ PKI platform:

  • Support for the ACME protocol, which enables automation of certificate management.
  • To allow simplified integration to utilize our PKI platform, Certificate Manager (CM) REST API is available.
  • Additional Hardware Security Module (HSM) support, and even nano HSMs from Yubico and Nitrokey.
  • New reporting of certificate issuing metrics using InfluxDb to enable analytics and monitoring providers, such as Grafana.
About Common Criteria

The Common Criteria for Information Technology Security Evaluation (CC) is an internationally recognized evaluation standard for IT security products. Common Criteria assures that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous, standard and repeatable manner and at a level that is commensurate with the target environment for use.

For more information, see www.commoncriteriaportal.org/.

Published

About Smart ID Certificate Manager

Smart ID Certificate Manager (CM) is a flexible and scalable certificate authority (CA) software portfolio, including OCSP responder (Online Certificate Status Protocol) and a wide range of enrollment protocols, which enables you to issue and manage electronic identities (eIDs) for people, infrastructure, and things.

Certificate Manager is used in Nexus' solutions for Corporate PKI and Identities for IoT.

Do you have questions about our PKI solution?

GET IN TOUCH 

 

Choose another case study

Customer Cases Online service

Solna Municipality selects Nexus GO Cards as a Service for their workforce identity and access cards

11 May, 2020
Solna Municipality selects Nexus GO Cards as a Service for their workforce identity and access cards We are pleased to announce that Solna Stad, a...
Customer Cases Lifecycle management LTE

Mobily selects Nexus Smart ID to enable trust in future identities

4 May, 2020
Mobily selects Nexus Smart ID to enable trust in future identities We are pleased to announce that Mobily, the second-largest telecommunications o...
Customer Cases Online service

Nexus partners with CERTEGO, a part of the ASSA ABLOY Group

30 April, 2020
Nexus partners with CERTEGO, a part of the ASSA ABLOY Group We are pleased to announce that CERTEGO, a leading Nordic security provider, will cont...