Entrust Authority

Public Key Infrastructure (PKI)

Entrust's first public key infrastructure — the world's first commercially available PKI — was released in 1994. Now in its eighth edition, the Entrust Authority public key infrastructure product portfolio is the industry's most relied-upon PKI solution.

By managing the full lifecycles of digital certificate-based identities, Entrust Authority PKI enables encryption, digital signature and certificate authentication capabilities to be consistently and transparently applied across a broad range of applications and platforms.

These capabilities can be achieved by implementing a dedicated in-house PKI environment, or by partnering with Entrust to host, manage and maintain your PKI offsite.

Free 60-Day Trial

Overview

Modular and fully integrated, the Entrust Authority public key infrastructure (PKI) portfolio is built on the foundation of Entrust Authority Security Manager, the certification authority (CA) responsible for issuing and managing users' digital identities.

A PKI establishes and maintains a trustworthy networking environment by providing key and certificate management services that enable encryption and digital signature capabilities across applications — all in a manner that is transparent and easy to use.

Organizations may elect to implement a standard in-house PKI with Entrust Authority, or opt to enroll in Entrust Managed Services PKI — a hosted service, also based on Entrust Authority, which provides the ability to harness this technology without buying, establishing or operating an in-house CA.

Optional components can be easily integrated to help meet an organization's unique security requirements and transparently automate all security-related processes through a single PKI. Entrust also provides a series of toolkits to help developers apply best-in-class PKI security to custom applications.

Features

As the organization's CA, Entrust Authority Security Manager enables the use of digital signatures, digital receipts, certificate validation, encryption and permissions management services across a wide variety of enterprise applications and solutions.

Entrust Authority Security Manager represents the centerpiece of the Entrust Authority products portfolio, built specifically to:

  • Securely store the certification authority (CA) private key
  • Issue certificates for users, applications and devices
  • Use certificate authentication to verify the identity of a device or user
  • Publish certificate revocation lists (CRLs) that are used to verify whether a user or application's certificate is still trusted by the CA that issued it
  • Maintain an auditable database of users' private key histories for recovery purposes in the event that users lose access to their keys

Organizations can choose to add more security management capabilities — including self-registration and self-recovery of digital identities, secure roaming, enrollment services, and the use of PINs as an alternative to two-factor authentication methods — using the platform's optional PKI components.

Why Entrust?

Whether your organization requires an in-house PKI or the convenience of a hosted PKI service, Entrust provides a myriad of capabilities to help meet the security challenges of your organization.

Global PKI Leaders. The pioneer of the technology, Entrust PKI solutions are deployed in nearly 800 organizations worldwide. Trusted by leading governments, elite financial institutions and top organizations, our PKI solution is unmatched in manageability, versatility and real-world success.

The Original PKI. Entrust's first public key infrastructure — the world's first commercially available PKI — was released in 1994. Now in its eighth edition, the Entrust Authority product portfolio is the industry's most relied-upon PKI solution.

Strong, Affordable Security. Entrust's PKI technology is one of the most relied-upon security solutions on the market today. And our Managed Services PKI offering helps reduce the burden on your security budget by eliminating the need for expensive facilities, upfront investments and expert security staff.

Multiplatform. Entrust Authority is compatible with today's most popular operating systems, including Microsoft Windows, Linux Red Hat, Solaris, AIX and HP-UX. No matter your environment, your organization can benefit from the security capabilities of our industry-leading PKI solution.

The Choice Is Yours. Have the know-how and secure facilities to implement, manage and maintain your own PKI? Perfect, Entrust Authority is for you. But if you prefer that the PKI experts facilitate the setup and on-going operation of the CA infrastructure, look to Entrust Managed Services PKI. Entrust offers a choice of either.

Protecting Citizens. While our PKI is certainly proven in enterprise environments, the technology is also used to secure many of today's largest ePassport projects and citizen ID initiatives.

More Options. More Power. Entrust provides six optional components to help take your PKI investment to the next level. Additional toolkits enable you to apply your PKI to solve almost any security challenge. This flexibility allows you to tailor the PKI environment to the specific needs of the organization.

Related Products

Solutions

  • Entrust Managed Services PKI
    Leverage the convenience and security of a full PKI without an expensive upfront investment, in-house experts or need to build secure facilities.
  • Entrust IdentityGuard
    Enables organizations to layer strong authentication methods — according to access requirements or the risk of a given transaction — across diverse users and applications. The platform can even use PKI's digital certificates for strong authentication as part of a transparent security environment.
  • Entrust ePassport Solutions
    Proven with more real-world deployments than any other vendor, Entrust is the ePassport security leader for Basic Access Control (BAC) and Extended Access Control (EAC) environments.
  • Entrust Citizen ID Solutions
    Entrust offers a flexible set of authentication solutions designed to meet a variety of citizen ID and e-authentication requirements.
  • Entrust First Responder Authentication Credential (FRAC) Solution
    Gives emergency management agencies the ability to issue and manage first responder smart identity cards that can be electronically verified on site through an integrated, flexible, scalable and reliable solution.

Optional PKI Components

  • Entrust Authority Administration Services
    A Web-based application that enables delegated and distributed administration of the Entrust Authority Security Manager PKI with end-to-end security by enforcing all administrative transactions to be digitally signed.
  • Entrust Authority Auto-enrollment Server
    An optional add-on to Entrust Authority Security Manager that, together with Entrust Entelligence Security Provider for Microsoft® Windows®, introduces the capability to automatically enroll users and computers with the PKI for managed certificates when using a Microsoft® Windows® platform.
  • Entrust Authority Roaming Server
    Allows users to log in and have secure access to sensitive information — from any location — without having to carry the PKI digital IDs necessary to establish a secure connection.
  • Entrust Authority Security Manager Proxy
    Allows customers to communicate with a PKI certification authority (CA) over the Internet, without making changes to existing firewall settings.
  • Entrust Authority Enrollment Server for Web
    Works with Entrust Authority Security Manager to issue PKI digital certificates to applications and devices.
  • Entrust Authority Enrollment Server for VPN
    This server works with Entrust Authority Security Manager to issue digital certificates to VPN gateways, remote access clients and routers from a wide range of industry-leading vendors.

Resources

Data Sheets

White Papers

Podcasts

The PKI Phoenix Rises
Principal of Advanced Security (PKI) Sharon Boeyen (29:46) (description)

flash required

Customer Success

Quick Links

Entrust Public Key Infrastructure (PKI)

Public key infrastructure or PKI refers to a system that provides certificate management for digital certificates. Digital certificates contain public key pairs that can be used for encryption, digital signature and authentication security. Entrust PKI security solutions help government agencies and corporations to secure their digital identities and information.

Specialized "passport PKI" is used by governments to verify and secure data stored on a chip imbedded in passports issued to citizens. Epassport PKI involves the use of PKI by governments to secure data stored on a chip imbedded in a passport. The government acts as a certification authority that issues the digital certificates used in an ePassport system.

Entrust is a trusted provider of network security solutions that include digital certificates, managed PKI certificates, two factor-authentication, ssl certificates, token authentication, smart card PKI and encryption software.