Verified PKI as a Service
Entrust Verified PKIaaS helps you to comply with WebTrust requirements and to transition critical use cases away from public trust (WebPKI) without the need to build and operate your own PKI.
Reduce WebPKI risks
Reduce operational risks of public trust certificates by transitioning some of your certificates to a private and controlled environment
Help meet compliance requirements
Verified PKIaaS is WebTrust-audited, helping you stay compliant with industry standards such as HIPAA and PCI DSS
Delegate PKI management
Avoid the cost and effort of building and maintaining your own PKI. We handle infrastructure, hardware, and skilled personnel for you, in alignment with WebPKI best practices.
Why Choose Verified PKIaaS
Cloud PKI With Offline Roots
Deploy PKI without on-premises complexity; gain scalability, high availability, and reduced operational overhead.
WebTrust-Audited Infrastructure
Built on rigorous audit standards for trust and compliance, helping to ensure security and regulatory alignment.
Comprehensive CP and CPS Documentation
Entrust-managed policies and practices simplify your audits and compliance, reducing risk and accelerating approvals.
Registration Authority (RA) Services
Entrust handles identity validation and domain checks, streamlining certificate issuance and reducing errors.
Certificate Lifecycle Management (CLM) Features
Automate issuance, renewal, and revocation with policy-driven workflows to minimize human error and downtime.
Dedicated Intermediate CAs
Gain control and brand visibility with private intermediates under your name, backed by Entrust’s secure infrastructure.
Resources
Verified PKIaaS Datasheet
Learn how Entrust PKIaaS helps you meet compliance and reduce reliance on public trust.
Rethinking Certificate Management
Why the 47-day mandate signals a broader shift in certificate lifecycle management.
PKIaaS
A highly secure PKI that’s quick to deploy, scales on-demand, and runs where you do business.
Cybersecurity Institute
The complete resource center to get critical insights and education on cybersecurity concepts.
FAQs
How does Verified PKIaaS help me move away from WebPKI?
Entrust Verified PKIaaS provides a high-assurance PKI service, allowing you to safely transition some of your certificate use cases (such as TLS/SSL) away from public trust certificates without building your own PKI infrastructure, in an audited environment that follows WebPKI best practices.
Which compliance standards does Verified PKIaaS support?
The service is built on a WebTrust-audited infrastructure and helps meet compliance requirements set by standards such as HIPAA and PCI DSS.
Which PKI operations can I delegate with this service?
Entrust operates as policy authority (PA) and manages CA operations, RA operations, and standards-based compliance (all people, processes, and technology components) for you.
What are the key features of Verified PKIaaS?
Features include HSM protection (FIPS 140-2 Level 3), API-based certificate management, high availability, automated lifecycle management, audit logging, and subscriber verification.
What are the differences between PKIaaS and Verified PKIaaS?
Entrust PKIaaS was designed to provide a turnkey PKI solution with online root CAs that can be set up in just a few minutes, for specific use cases such as Microsoft Intune and mobile device management. Entrust Verified PKIaaS is a PKI solution aligned with WebPKI requirements, using offline root CAs and audited under WebTrust. It comes with extra verifications and features such as organization and domain validation.
Our experts will contact you to discuss how our solutions can meet your needs.