U.S. Federal Government Data Protection

- Industries
- Solutions
  - Our Expertise
  - Strong Identities
  - Secure Payments
  - Protected Data
- Featured Products
  - As a Service Products
- Enterprise ID & Issuance
  - Instant ID as a Service
    Learn More
  - Instant Issuance
- Financial ID & Issuance
  - Digital Card Solution
    Learn More
  - Digital Banking
    1. Digital Account Opening
    2. Digital Card Solution
  - Instant Issuance
  - Central Issuance
- Government ID & Issuance
  - Digital Citizen
    1. Seamless Travel as a Service
    2. ePassport as a Service
  - Instant Issuance
    1. Other citizen IDs and licenses.
    2. System Software
    3. Supplies
    4. Services
  - Central Issuance
    1. Passports, national IDs and driver licenses.
    2. Passport Issuance Systems
    3. National ID and Driver License Systems
    4. Inline Delivery & Insertion
    5. Standalone Delivery & Insertion
    6. System Software
    7. Supplies
    8. Services
  - Identity Verification as a Service
    Our IDVaaS solution allows remote verification of an individual’s claimed identity for immigration, border management, or digital services delivery.
    Learn More
- Cloud Security Posture Management
  - CloudControl 30-Day Free Trial
    Entrust CloudControl offers comprehensive security and automated compliance across virtualization, public cloud, and container platforms while increasing visibility and decreasing risks that can lead to unintended downtime or security exposure.
    Start Free Trial
- Key Management and Encryption
  - KeyControl for VM Encryption
  - KeyControl 30-Day Free Trial
    VMware vSphere and vSAN encryption require an external key manager, and KeyControl is VMware Ready certified and recommended. KeyControl enables enterprises to easily manage all their encryption keys at scale, including how often keys are rotated, and how they are shared securely.
    Start Free Trial
- Hardware Security Modules (HSM)
  - 1. nShield as a Service
  - nShield HSMs
  - Why you need an HSM
    Learn about all the details related to what hardware security modules offer you in security and cost savings...
    Learn More
- Digital Certificates
  - 1. Buy Certificates
    2. Renew Certificates
  - TLS/SSL Certificates
  - Qualified Certificates
    1. QWAC eIDAS Certificates
    2. QWAC PSD2 Certificates
  - Sales and Services
- Identity and Access Management (IAM)
  - Products
    1. Identity as a Service
      Cloud-Based IAM
    2. Identity Enterprise
      On-prem IAM
    3. Identity Essentials
      On-prem MFA solution for Windows users
    4. APIs and SDKs
  - Get Entrust Identity as a Service Free for 60 Days
    Explore the Identity as a Service platform that gives you access to best-in-class MFA, SSO, adaptive risk-based authentication, and a multitude of advanced features that not only keep users secure, but also contribute to an optimal experience.
    Start Free Trial
- Electronic and Digital Signing
  - Digital Signing as a Service
  - Digital Signing Certificates
  - Digital Signing Infrastructure
  - EU Qualified Trust Services
    In addition to our long-standing Adobe Approved Trust List (AATL) membership, we are a European Qualified Trust Service Provider for the issuance of eIDAS qualified certificates for qualified signatures and advanced seals, for PSD2 certificates and for QWACs
    Learn More
- Public Key Infrastructure (PKI)
  - PKI Products
  - Managed Services
  - Cryptographic Center of Excellence
  - Try Post-Quantum PKI as a Service Now
    Get PQ Ready. PKIaaS PQ provides customers with composite and pure quantum Certificate Authority hierarchies.
    Try Now
- Resources
  - Issuance Systems Knowledge Base
    Learn More
  - Digital Security Knowledge Base
    Learn More
  - Cybersecurity Institute
    Get critical insights and education on security concepts from our Trust Matters newsletter, explainer videos, and the Cybersecurity Institute Podcast.
    Learn More
- Partners
  - Partner with Entrust
    Join one or more of our partner programs and we’ll help you increase profitability, expand your brand, and target strategic customers.
    Learn More
  - Partner Directory
    Search for partners based on location, offerings, channel or technology.
    Search for a Partner
  - Programs
  - Partner Logins
- Buy
  - Shop Certificate Services
    Shop for new single certificate purchases.
    Learn More
  - Certificate Services Customer Portal
    Existing Entrust Certificate Services customers can login to issue and manage certificates or buy additional services.
    Learn More
  - Certificate Services Partner Portal
    Existing partners can provision new customers and manage inventory.
    Learn More
  - Instant Financial Card Issuance Supplies
    1. Registered Customer Login
    2. Request Access
- About Entrust
  - Securing a World in Motion Since 1969
    We’ve established secure connections across the planet and even into outer space. We’ve enabled reliable debit and credit card purchases with our card printing and issuance technologies. Protected international travel with our border control solutions. Created secure experiences on the internet with our SSL technologies. And safeguarded networks and devices with our suite of authentication products.
    Explore Our History
  - Cybersecurity Institute
    Get critical insights and education on security concepts from our Trust Matters newsletter, explainer videos, and the Cybersecurity Institute Podcast.
    Learn More
- Search Entrust
  - Search:

U.S. Federal agencies face complex data protection challenges from cybercriminals, state actors, and malicious insiders who seek to expose sensitive records found in agency databases, both on-premises and in the cloud.

Entrust nShield® hardware security modules (HSMs) and our Entrust Ready Technology Partners offer proven data protection solutions that enable Federal agencies to align with security frameworks and programs, including:

Cybersecurity Maturity Model Certification (CMMC)
NIST 800-53
FedRAMP
DHS CDM
NSA CSfC Key Management

All our nShield HSMs are FIPS 140-2 Level 3 certified.

nShield FIPS Certifications

Entrust nShield HSMs are available to the U.S. Federal market through Carahsoft.

Click the logos below to learn more about our premier partner integrations and supported platforms.

Entrust nFinity US Federal Government Partner Network

Artificial Intelligence

Sinequa UI Path

Key Management

IBM Oracle HyTrust Fornetix Red Hat

ADCs, Firewalls, TSL/SSL Inspection

F5 Gigamon Symantec A10 McAfee Palo Alto

Digital Signing, Code Signing

Microsoft Entrust

Encryption, Database Security, Tokenization

Oracle HID Bloombase Prime Factors IBM Microsoft Micro Focus

Identity, User Authentication

IBM Ping Identity Microsoft Hypori Entrust

Cloud, Containers

Red Hat Microsoft Mirantis Salesforce Google Cloud AWS

OKI, IOT, Certificate Management

Microsoft Appview X Venafi Intercede Information Security Corporation KeyFactor Red Hat Entrust HID Axway

Privileged Access and Secrets Management

HashiCorp Cyberark Beyond Trust Thycotic

DoD and Intelligence Agency Solutions

Nation states and other malicious actors continue to probe Department of Defense and Intelligence agencies for cybersecurity weaknesses. As articulated by Ellen Lord, former Undersecretary of Defense for Acquisition and Sustainment: "It's no secret that the U.S. is at cyber war every day.” ¹

To help address today’s dynamic threat landscape Federal agencies rely on Entrust and our technology partners to help protect their mission-critical data and cryptographic material. We have decades of experience in helping agencies address a wide range of use cases and programmatic requirements, including:

Commercial Solutions for Classified

Public Key Infrastructure

Robotic Process Automation

KMIP/Key Management

Privileged Access and Secrets Management

Featured Technology Partners

^1. ^{https://www.defense.gov/Explore/News/Article/Article/2312512/dodfocuses-on-minimizing-cyber-threats-to-department-contractors/Featured Technology Partners}

Civilian Agency Solutions

Federal agencies collect and manage large volumes of sensitive data as a necessary part of their operations. This includes personally identifiable information (PII) and other mission-critical records that require high levels of protection. These large stores of data are highly attractive to cybercriminals, who seek to exploit it for financial gain.

Civilian agencies rely on Entrust and our technology partners to help protect their data and cryptographic material. We have decades of experience in helping agencies address a wide range of use cases and programmatic requirements, including

Public Key Infrastructure

Robotic Process Automation

Privileged Access and Secrets Management

KMIP/Key Management

Database Encryption

Featured Technology Partners

Resources

Solution brief: NSA CSfC Key Management

The NSA CSfC Key Management (KM) Requirements Annex specifies the use of approved algorithms and certificates to ensure the security of classified data in transit. Download this solution brief to learn how Entrust nShield HSMs help US government agencies meet the HSM requirements defined by the Key Management Capability Package.

NSA CSfC Key Management Solution Brief

Brochure: Entrust nShield HSMs Brochure

Entrust nShield HSMs provide a hardened, tamper-resistant environment for secure cryptographic processing, key generation and protection, encryption and more. Available in three FIPS 140-2 certified form factors, Entrust nShield HSMs support a variety of deployment scenarios.

Entrust nShield HSMs Brochure

Brochure: Entrust nShield HSM Professional Services

The Entrust nShield HSM professional services team offers unmatched expertise in architecting and implementing crypto applications for the world’s most security-conscious organizations. Download the catalog to learn how our team can help design and deploy the right solution for your unique environment.

Entrust nShield HSM Professional Services

Data Sheet: Code Signing Gateway

The Code Signing Gateway Service provides a range of flexible and centralized workflow automation functions that helps organizations successfully meet secure code signing requirements. The Code Signing Gateway is a customer hosted server that runs an Entrust nShield code signing application and is complemented by onsite installation and training delivered by Entrust nShield HSM professional services.

Code Signing Gateway Data Sheet

Solution brief: Code Signing

In addition to enhanced code signing key security, the Entrust nShield HSMs’ Code Signing solution offers a flexible range of automation capabilities for code signing approval processes as well as for centralized cryptographic key management. The Entrust nShield HSM Code Signing solution is unique in that it not only provides a high assurance method to protect private code signing keys in certified secure hardware, but also offers a flexible range of capabilities to simplify and automate the code signing request/approval workflow for organizations with more complex environments.

Code Signing Solutions Brief

Solution brief: Bring Your Own Key | Hold Your Own Key

Entrust nShield HSMs provides the mechanisms that let you use your nShield HSMs to generate keys, secure long-term storage, and export your keys into the cloud, whether you’re using Amazon Web Services (AWS), Google Cloud Platform (GCP) or Microsoft Azure. Download the solution brief to learn more.

Bring Your Own Key | Hold Your Own Key Solutions Brief