| |
GlobalSign Press Center News & Events
GlobalSign Partners with nCipher to Provide Hardware Based Trust to Enterprise CA Users
New combination of nCipher HSM solution and GlobalSign Trusted Root CA Certificate helps Enterprise CA customers achieve fast Return on Investment
LONDON, UK – 4 April, 2007 – GlobalSign (www.globalsign.com), one of the longest established Certification Authorities (CA) and specialists in Digital Certificate security today announced a partnership with nCipher plc (LSE: NCH) to offer publicly trusted CA Root Certificates housed securely within nCipher Hardware Security Modules (HSMs). This new integrated solution offers immediate benefits to enterprises using in-house Enterprise CA solutions such as the Microsoft CA software to deploy their own internal / extranet based public key infrastructure. Enterprises using the newly combined solution can expect significant Microsoft CA implementation savings as well as greatly increased security surrounding certificate generation and protection.
In recent years many enterprises and major organizations have established their own Enterprise Certificate Authority (CA) with the primary goal of enhancing security for an ever increasing number of diverse web based business processes. For an enterprise to establish their own Enterprise CA it must self-sign a CA Root Certificate, which is then used to issue digital certificates to employees, extranet users and even machines and services. Such certificates can then be used to digitally sign and encrypt communications and also to control access to web resources. However this self-signed Root CA Certificate is not automatically trusted by main-stream operating systems (such as Microsoft Windows), browsers (such as Microsoft Internet Explorer, Mozilla Firefox) or email clients (such as Microsoft Outlook). This inability to trust causes warning messages to be displayed, resulting in a lack of confidence by staff and increased cost for support and training.
To avoid these warnings the enterprise would be forced to either accept the increased support costs or to undertake a Root Embedding program to have the self-signed Root CA Certificate inserted into all operating systems, browsers and applications. Such a program is expensive and labor intensive, taking many years before the enterprise’s Root CA Certificate is sufficiently ubiquitous to be used without support issues. The time and cost associated with an Embedding Program massively outweigh any advantage that would be associated with implementing an Enterprise CA solution.
As a leading WebTrust accredited Certification Authority, GlobalSign has maintained its own pioneering Root Embedding program for over 10 years and now the GlobalSign Root CA Certificate is trusted by practically all mainstream browsers and applications. With GlobalSign’s RootSign there is no need for individual Enterprise CAs to have their own Embedding program, instead GlobalSign allows use of its own ubiquitous Root CA certificate to give the customer its own set of new, but highly trusted, Root CA certificates. The customer then immediately inherits the trust associated with the GlobalSign Root CA which provides an easy way for certificates issued by the enterprise to be transparently accepted in all popular applications, thereby eliminating the costly support issues. The newly trusted Root CA Certificates are then placed within an nCipher Hardware Security Module (HSM) which physically protects the cryptographic keys from hackers or unauthorised use. Protection of the Root CA Certificates is vital to organizations; by using a HSM which protects cryptographic keys an organization can be sure its root certificate has not been compromised and is safe from external tampering.
“By deploying hardware protection for Enterprise CA solutions customers can be confident in their ability to ensure privacy, protect intellectual property and establish the authenticity of online transactions and information exchanges as well as implementing best practice security,” said Sarah Hurst, EMEA Partner Manager for nCipher. “We are pleased to partner with GlobalSign to bring our experience in digital certificate hardware security to the RootSign program.”
“The partnership with nCipher is a perfect fit, as the two solutions go hand in hand. RootSign naturally stipulates a requirement for a HSM to protect both GlobalSign and the RootSign customer. nCipher’s market leading hardware platforms deliver highly competitive solutions tailored specifically for the Enterprise CA market”, said Paul Tourret, Managing Director GlobalSign. “Such Enterprise CA customers can simply take advantage of the fact that we have highly ubiquitous and trusted Root CA Certificates, they simply take advantage of our investment in the root program and inherit the trust that GlobalSign has garnered over the last 10 years.”
The RootSign / nCipher HSM combined solution is available now from either GlobalSign at http://www.globalsign.com/pki/rootsign.htm or through nCipher at http://www.ncipher.com/
About nCipher
nCipher protects critical enterprise data for many of the world's most security-conscious organizations. Delivering solutions in the areas of identity management, data protection, enterprise key management and cryptographic hardware, nCipher enables businesses to identify who can access data, to protect data both in transit and at rest, and to comply with the growing number of security-related regulations. nCipher is listed on the London Stock Exchange (LSE:NCH). www.ncipher.com
About GlobalSign
Established in 1996 and as a WebTrust accredited public certificate authority, GlobalSign offers publicly trusted SSL, including SSL Certificates, EV SSL, S/MIME and Code Signing Certificates for use on all platforms including mobile devices. Its Trusted Root solution uses the widely embedded GlobalSign Root CA certificates to provide immediate PKI trust for Microsoft CA and enterprise CAs, eliminating the costs of using untrusted Root Certificates. Its partnership with Adobe to provide Certified Document Services (CDS) enables secure digitally signed PDF documents. These core Digital Certificate solutions allow its thousands of authenticated customers to conduct secure online transactions, data transfer, distribution of tamper-proof code, and protection of online identities for secure email and access control. The company has a history of innovation within the online security industry and has offices in the US, UK, Belgium, Japan, and China.
GMO Internet Group
GMO Internet Group, headquartered in Japan, is a leading force in the Internet industry offering one of the most comprehensive ranges of Internet services worldwide. The group holds top domestic market share in domain registration, web hosting, and payment processing and provides a host of other Internet services including global online security services, e-commerce solutions, and Internet advertising to both businesses and individuals. At the centre of the group is GMO Internet, Inc. a company listed on the prestigious first section of the Tokyo Stock Exchange (TSE: 9449). Please visit www.gmo.jp/en for further details.
For further details please contact:
| |
