As organizations move to the cloud, the use of public key infrastructure (PKI) and certificates to securely authenticate machines and workloads has grown dramatically. To keep pace, security teams need a way to effectively manage all of these machine identities across their hybrid and multi-cloud infrastructure, all while ensuring that sensitive private keys remain protected.
Keyfactor and Fortanix combine the benefits of certificate lifecycle automation with robust key protection in Fortanix Data Security Manager (DSM). Keyfactor provides full discovery, policy enforcement, and automation for the lifecycle of certificates, and Fortanix DSM ensures secure generation and storage of private keys associated with those certificates. The combined solution gives teams the flexibility to manage millions of keys and certificates, whether in the cloud, on-premise or embedded in IoT devices.
Gain visibility and control
Manage and enforce policy for every certificate issued from your public, private, and cloud-based CAs — all from a single intuitive interface.
Fully automate certificate renewal and provisioning across all devices and workloads in hybrid and multi-cloud environments.
Protect private keys
Generate, store, and manage hundreds of millions of private keys using the FIPS 140-2 Level 3 certified Fortanix HSM on-prem or in the cloud.
How it Works
Keyfactor Command integrates directly with any public, private, and cloud-based CA to support self-service enrollment and automated provisioning of certificates to workloads. The platform can leverage Fortanix DSM to protect the private key associated with certificates and ensure that crypto-operations are completely secured by Intel SGX.