Skip to main content

New Zero Trust Solutions from Entrust Enhance Security of Applications, Encryption Keys, and Secrets




News Room Media Inquiry

News Room Media Inquiry

Woman sitting at a table and using a laptop
  • Launches Code Signing as a Service to establish application provenance and help secure the software supply chain.
  • Extends security policy control over virtual infrastructure resources as well as cloud operations with a single solution.
  • Solves for organization-wide visibility and control over key and secrets management policies.
  • Enables developers to protect applications easily in an HSM environment with the same level of security as they do cryptographic keys and secrets.

MINNEAPOLIS (September 19, 2023)Entrust, a global leader in identity and data security, today announced new capabilities to help organizations enhance their security posture and advance their Zero Trust maturity journey. The new features extend protections, visibility, and governance over virtual infrastructures, code and application development, and cryptographic key management.

“IT and security leaders are being challenged to secure the enterprise, anticipate and plan for new threats, ensure compliance, and enable the organization to advance and grow. Zero Trust offers a framework for organizations to enhance their security posture, while enabling today’s hybrid, multi-cloud operations. These latest innovations from Entrust help organizations gain greater visibility and governance over how they manage encryption keys, secrets, and applications across on-premises, virtualized, and multi-cloud operations,” said Bhagwat Swaroop, President, Digital Security Solutions at Entrust.

Specifically, Entrust has enhanced the ability for customers to address the following aspects of the Zero Trust framework:

  • Securing the Software Supply Chain: New cloud-based Code Signing as a Service simplifies application security for developers, while enhanced CodeSafe solution capabilities enable secure application development within the protected boundary of the Entrust nShield hardware security module (HSM).
  • Data Security with Key Management: The new Compliance Manager for KeyControl solution provides visibility of encryption keys and secrets across on-premises and multi-cloud operations – a foundation of Zero Trust architectures.
  • Cloud Security Posture Management (CSPM) for Virtual Environments: Entrust has extended verifiable trust policy management for virtual environments as well as multi-cloud operations through its CloudControl solution.

Entrust has created a new Zero Trust Maturity Self-Assessment to help organizations understand how their posture aligns with the Cybersecurity & Infrastructure Security Agency (CISA) Zero Trust Maturity Model. Read below for more details on how each of these innovations helps organizations enhance their Zero Trust frameworks.

Automated Code Signing as a Service
The new Entrust Code Signing as a Service (CSaaS) is a fully hosted cloud-based solution to obtain and manage code signing certificates that ensure software authenticity and integrity. Authenticated code signing combined with a software bill of materials (SBOM) gives organizations visibility into their software supply chain. The CSaaS solution provides organizations with a centralized location to safeguard code signing certificates and keys without the need to manage secure hardware and can be connected to existing automated code signing applications and workflows.

Secure Application Development Within an HSM
The Entrust nShield CodeSafe solution lets developers write and execute sensitive applications securely inside the boundary of an nShield HSM. New capabilities provide a standardized container development environment and enable adoption of common engineering processes across all application deployment environments. Entrust also has released an SDK to enable customers to test the National Institute of Standards and Technology (NIST) post-quantum cryptography (PQC) draft algorithms in the secure CodeSafe solution environment.

Gain Control and Visibility into Encryption Key and Secrets Management, Across Clouds and On-Premises
With the new Compliance Manager for KeyControl solution, organizations can establish an encryption key inventory and have full visibility into related key information across on-premises and cloud environments. This patent-pending solution provides a unified dashboard to view and monitor compliance of an organization’s cryptographic assets centrally, whether located across one or many vaults or configured locally or geographically distributed.

CSPM for Virtual Environments
The Entrust CloudControl cloud security posture management solution now extends to virtual infrastructures, ensuring that requests to access virtual resources across data centers and private clouds must be authenticated and authorized before access can be granted. Workloads are secured and only run under multi-layered security and authorization controls, including secondary approvals, risk-based access control (RBAC), and multi-factor authentication (MFA). The CloudControl solution also facilitates data sovereignty compliance by disabling virtual machines if they are moved out of defined areas.

Visit Entrust at to learn more about Entrust solutions for advancing Zero Trust frameworks.

About Entrust
Entrust keeps the world moving safely by enabling strong identities, secure payments, and protected data. We offer an unmatched breadth of solutions that are critical to the future of secure enterprises, governments, the people they serve, and the data and transactions associated with them. With our experts serving customers in more than 150 countries and a network of global partners, it’s no wonder the world’s most trusted organizations trust us. Learn more at