A public key infrastructure (PKI) is a platform that supports managing digital certificates for implementing strong authentication, electronic signature and data encryption methods. Digital certificates are identification credentials that can be used by individuals, entities and services.
PKI credentials are usually used in electronic identification formats that provide a high degree of trust, thus guaranteeing that the person stating they possess a given identity is actually that person. PKI credentials:
- Provide an infrastructure for implementing secure identification methods, either for governments (e.g., the DNIe Spanish eID card and the e-passport) or in other sectors where there is a need to electronically guarantee access control to critical assets (2FA methods).
- Use globally recognized technical standards that guarantee the interoperability of the PKI, e.g., standards from the ITU Telecommunication Standardization Sector (ITU-T), European Telecommunications Standards Institute (ETSI), Internet Engineering Task Force (IETF) and CA/Browser Forum.
- Comply with electronic identification regulations, including the EU Directive on electronic signatures (Directive 1999/93/EC) and the eIDAS Regulation on electronic identification and trust services for electronic transactions in the internal market (EU Regulation No 910/2014).
Safelayer's KeyOne: Proven and Complete Products
Safelayer's KeyOne product is one of the most complete and tested PKI platforms on the market. It includes all the components needed for managing certificates and guarantees the scalability required for managing critical PKIs of large volumes.
KeyOne products are used in numerous government projects and by certification service providers and large corporations across countries in EMEA and LATAM, including Germany, Andorra, Belgium, Colombia, Spain, France, Estonia, Morocco, Paraguay, Panama, Portugal, Tunisia and Uruguay.
Major projects include CERES for the Royal Spanish Mint (FNMT), with over 2 million digital certificates generated annually, and the DNIe or Spanish eID card for the Spanish Directorate General of the Police and Civil Guard, with more than 30 million e-identification cards issued.
For more information on the certificate management system, see the following products:
- Key One PKI Platform: KeyOne software suite implements advanced public key infrastructures (PKI) for National eIDs, Trust Service Providers (TSP) and critical corporate PKIs. In addition to eID, the platform also provides PKI technology for the emerging realms of mobility and the Internet of Things (IoT). Common Criteria EAL4 + (ALC_FLR.2) and NATO Secret classified.
- KeyOne eMRTD Platform: Complete PKI suite for eMRTDs, including BAC and EAC ePassport, to secure citizen identification at border controls. It offers a set of specific CC EAL 4+ components required for implementing the International Civil Aviation Organization (ICAO) and the European Union (EU) standards.