Nexus’ Smart ID PKI platform obtains Common Criteria EAL4+

As a formal evidence of its strong security and high quality, Nexus’ PKI platform that enables digital trust in Workforce and IoT solutions has been certified in compliance with Common Criteria EAL4+. With its enriched feature set that includes certificate automation and extended integration capabilities, Nexus now offers the most modern PKI platform available. 

Nexus’ certification enhances digital trust

The Common Criteria certification means that Nexus’ products and their security-related functions have been verified in an independent evaluation and quality control. It is an official proof that the processes to develop and evaluate the products are being conducted in a secure and repeatable manner.

“With this certificate, we make it much easier for our customers to prove the security and quality of their solutions, for example when they go through security certifications and auditing,” says Martin Furuhed, product owner of the Smart ID PKI platform and PKI expert since more than 20 years.

The certified versions are Certificate Manager 8.0.0 and OCSP Responder 6.0.2.

The Common Criteria certification provides a guarantee for quality, reliability and security and is often required due to increased demand on information security driven by national or international regulations. This is important and in line with Nexus’ work to protect business-critical environments in large organizations.

Certificate automation and simplified integration

Here are some other new features of Nexus’ PKI platform:

  • Support for the ACME protocol, which enables automation of certificate management.
  • To allow simplified integration to utilize our PKI platform, Certificate Manager (CM) REST API is available.
  • Additional Hardware Security Module (HSM) support, and even nano HSMs from Yubico and Nitrokey.
  • New reporting of certificate issuing metrics using InfluxDb to enable analytics and monitoring providers, such as Grafana.
About Common Criteria

The Common Criteria for Information Technology Security Evaluation (CC) is an internationally recognized evaluation standard for IT security products. Common Criteria assures that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous, standard and repeatable manner and at a level that is commensurate with the target environment for use.

For more information, see


About Smart ID Certificate Manager

Smart ID Certificate Manager (CM) is a flexible and scalable certificate authority (CA) software portfolio, including OCSP responder (Online Certificate Status Protocol) and a wide range of enrollment protocols, which enables you to issue and manage electronic identities (eIDs) for people, infrastructure, and things.

Certificate Manager is used in Nexus' solutions for Corporate PKI and Identities for IoT.

Do you have questions about our PKI solution?



Choose another case study

Customer Cases Workforce Case Studies

Thailand Ministry of Finance embraces next-gen identity management platform

26 April, 2022
Thailand's Ministry of Finance embraces next-gen identity management platform Thailand's Ministry of Finance (MoF) will use Nexus’ identity platfo...