GlobalSign® Corporate Information

GlobalSign Partners with nCipher to Provide Hardware Based Trust to Enterprise CA Users

Certification New Combination of nCipher HSM solution and GlobalSign Trusted Root CA Certificate helps Enterprise CA customers achieve fast Return on Investment

Portsmouth, NH –04 April, 2007 – GlobalSign (www.globalsign.com), one of the longest established Certification Authorities (CA) and specialists in Digital Certificate security today announced a partnership with nCipher plc (LSE: NCH) to offer publicly trusted CA Root Certificates housed securely within nCipher Hardware Security Modules (HSMs).  This new integrated solution offers immediate benefits to enterprises using in-house Enterprise CA solutions such as the Microsoft CA software to deploy their own internal / extranet based public key infrastructure.  Enterprises using the newly combined solution can expect significant Microsoft CA implementation savings as well as greatly increased security surrounding certificate generation and protection.

In recent years many enterprises and major organizations have established their own Enterprise Certificate Authority (CA) with the primary goal of enhancing security for an ever increasing number of diverse web based business processes.  For an enterprise to establish their own Enterprise CA it must self-sign a CA Root Certificate, which is then used to issue digital certificates to employees, extranet users and even machines and services.  Such certificates can then be used to digitally sign and encrypt communications and also to control access to web resources.  However this self-signed Root CA Certificate is not automatically trusted by main-stream operating systems (such as Microsoft Windows), browsers (such as Microsoft Internet Explorer, Mozilla Firefox) or email clients (such as Microsoft Outlook).  This inability to trust causes warning messages to be displayed, resulting in a lack of confidence by staff and increased cost for support and training. 

To avoid these warnings the enterprise would be forced to either accept the increased support costs or to undertake a Root Embedding Program to have the self-signed Root CA Certificate inserted into all operating systems, browsers and applications.  Such a program is expensive and labour intensive, taking many years before the enterprise’s Root CA Certificate is sufficiently ubiquitous to be used without support issues.  The time and cost associated with an Embedding Program massively outweigh any advantage that would be associated with implementing an Enterprise CA solution.

As a leading WebTrust accredited Certification Authority, GlobalSign has maintained its own pioneering Root Embedding Program for over 10 years and now the GlobalSign Root CA Certificate is trusted by practically all mainstream browsers and applications.  With GlobalSign’s RootSign there is no need for individual Enterprise CAs to have their own Embedding Program, instead GlobalSign allows use of its own ubiquitous Root CA certificate to give the customer its own set of new, but highly trusted, Root CA certificates.  The customer then immediately inherits the trust associated with the GlobalSign Root CA which provides an easy way for certificates issued by the enterprise to be transparently accepted in all popular applications, thereby eliminating the costly support issues.  The newly trusted Root CA Certificates are then placed within an nCipher Hardware Security Module (HSM) which physically protects the cryptographic keys from hackers or unauthorized use.  Protection of the Root CA Certificates is vital to organizations; by using a HSM which protects cryptographic keys an organization can be sure its root certificate has not been compromised and is safe from external tampering.

“By deploying hardware protection for Enterprise CA solutions customers can be confident in their ability to ensure privacy, protect intellectual property and establish the authenticity of online transactions and information exchanges as well as implementing best practice security,” said Sarah Hurst, EMEA Partner Manager for nCipher.  “We are pleased to partner with GlobalSign to bring our experience in digital certificate hardware security to the RootSign program.”

“The partnership with nCipher is a perfect fit, as the two solutions go hand in hand.  RootSign naturally stipulates a requirement for a HSM to protect both GlobalSign and the RootSign customer.  nCipher’s market leading hardware platforms deliver highly competitive solutions tailored specifically for the Enterprise CA market”, said Paul Tourret, Managing Director GlobalSign.  “Such Enterprise CA customers can simply take advantage of the fact that we have highly ubiquitous and trusted Root CA Certificates, they simply take advantage of our investment in the root program and inherit the trust that GlobalSign has garnered over the last 10 years.”

The RootSign / nCipher HSM combined solution is available now from either GlobalSign at http://www.globalsign.com/certificate-authority-root-signing/microsoft-certificate-services/or through nCipher at http://www.ncipher.com/

About GMO GlobalSign
Established in 1996 and as a WebTrust accredited public certificate authority, GlobalSign offers publicly trusted SSL Certificates, EV SSL, Managed SSL Services, S/MIME email security and Code Signing for use on all platforms including mobile devices. Its Trusted Root solution uses the widely embedded GlobalSign Root CA certificates to provide immediate PKI trust for Microsoft Certificate Services and internal PKI, eliminating the costs of using untrusted Root Certificates. Its partnership with Adobe to provide Certified Document Services (CDS) enables secure digitally signed PDF documents, certified transcripts and e-invoices.  These core Digital Certificate solutions allow its thousands of authenticated customers to conduct secure online transactions, data transfer, distribution of tamper-proof code, and protection of online identities for secure email and access control.  The company has a history of innovation within the online security industry and has offices in the US, UK, Belgium, Japan, and China.

GMO Internet Group
GMO Internet Group is one of the most comprehensive providers of industry-leading Internet services worldwide. As well as domain registration, web hosting, ecommerce, and payment processing businesses that each hold the top share in their respective markets in Japan, services operated by the group include Internet advertising, search engine marketing and research. Global online security brand GlobalSign and major Japanese online securities brokerage, GMO CLICK Securities are also group members. In 2011 a new Social Media & Smartphone Platform segment was established bringing together group initiatives in social apps development, flash marketing and Android apps distribution. GMO Internet, Inc. (TSE: 9449) is headquartered in Tokyo, Japan. Please visit www.gmo.jp/en for more information.

For further details please contact:

Steve Waite
GlobalSign
+603-570-7060 / 1-877-775-4562
press@globalsign.com