Cloud-based PKI
to Prove Identity

EJBCA Cloud; Powerful, flexible Certificate Authority and complete PKI, in the cloud.

Buy Now in AWS Buy Now in Azure

Public Key Infrastructure (or PKI) is largely about managing secure digital communication to find a way to know who is who when sharing information. Otherwise, how can you be certain of the identities of obscure parties?

You also need to decide and grant different individuals access and rights within, and occasionally outside, your organization. And you need to keep track of every single level of trust amongst your co-workers and business associates.

PrimeKey’s extendable PKI covers all demands for authentication efficiently and reliably. And now it’s also available in the cloud.

eIDAS electronic signatures - group discussing

Cloud-based PKI solution, EJBCA Cloud Edition

Strong encryption works if you do it the right way. Able to protect virtually any area of technology, our EJBCA software is used to meet all your needs for Public Key Infrastructure (PKI). PrimeKey’s EJBCA Cloud starts with just a few clicks, being a fully customized instance, tailored to your environment.  Choose from several instance sizes, in many available regions so you get the perfect PKI solution for your organization. To get an introduction, see our complimentary EJBCA Cloud Edition online training course. This online course walks you through how to get started.

Reed more about the EJBCA Enterprise software:

EJBCA Enterprise software

Security Infrastructure for any use case

Commonly referred to as a Certificate Authority (or CA), EJBCA Enterprise Cloud PKI is an open source IT-security software for Certificate Issuance and Certificate Management. By keeping track on who to trust, EJBCA Enterprise Cloud protects your data, allowing you to provide safe digital communication when needed.

Extremely flexible, EJBCA Cloud is used for most imaginable PKI use cases.

Control your own security with a cloud-based PKI

This is the one PKI software for any organization that needs to manage and operate its own serious, in-house PKI.

Deployable today in your AWS or Azure cloud environments, EJBCA Cloud gives you full control of everything you do. Bundled with support and available services, it allows you to handle and maintain your PKI implementation successfully, despite your level of expertise with PKI.

Security and Control

The support for HSMs brings the highest level of security by preventing unauthorized use of signing keys. PrimeKey EJBCA Cloud integrates with the FIPS 140-2 Level 3 validated AWS CloudHSM and Azure Key Vault (FIPS 140-2 Level 2). Or if you prefer, you can also combine EJBCA Cloud with a standard on-premises HSM (Hardware Security Module) via, for example, AWS Direct Connect or Azure Express Route.

Webinars on EJBCA Enterprise Cloud

Webinar: Why PKI in the Cloud?

In this highly-rated webinar, Alex Gregory, Director of Cloud Solutions at PrimeKey, lets you know all about PKI in the  Cloud. See how EJBCA Enterprise is deployed in the cloud and integrated into AWS CloudHSM to create Certificate Authorities and issue certificates.

Sign up

Webinar: Azure Key Vault Integration

In this webinar on PrimeKey EJBCA in Azure, you will learn how to protect your CA keys in the Azure Cloud. Alex Gregory, Director of Cloud Solutions at PrimeKey, fills you in on how to configure the Azure Key Vault for use with EJBCA Enterprise and more.

Sign up

Cloud-based Validation Authority (VA) on AWS

EJBCA Cloud VA offers a scalable, flexible, and cost-effective security solution. The OCSP protocol and CRLs provide validation for PKI, but typically require high volumes of connections that are geographically dispersed and require high server availability. All too often, customers are struggling to manage peek-hours of certificate validation requests without significantly adding to the cost of their PKI service.  With PrimeKey’s EJBCA Cloud VA, customers can scale out their OCSP layer in a much more economical way.

Rather than the incurring upfront and incremental investment associated with PKIs running in traditional, on-premise data centers, EJBCA Cloud VA offers the same functionality and the ability to scale out as the usage of the service changes and you only pay for the capacity that you use.

eIDAS compliant - people in front of computer
eIDAS discussions

AWS GovCloud (US)

EJBCA Enterprise Cloud Edition is certified by ANSSI at EAL4+ as well as FIPS 201-2, ISO 27001, ISO 9001 and ISO 14001.  Combining that with AWS GovCloud, that is designed to allow U.S. government agencies and its customers to leverage the cloud for Controlled Unclassified Information (CUI) data, makes for a turnkey PKI system for many government agencies looking for cloud solutions.

AWS GovCloud (US) is an isolated AWS region, subject to FedRAMP High and Moderate baselines, that allows customers to host sensitive Controlled Unclassified Information (CUI) and all types of regulated workloads.

The region is operated by employees who are U.S. citizens on U.S. soil. The region is only accessible to vetted U.S. entities and root account holders, who must confirm they are U.S. Persons to gain access to this region.

AWS GovCloud (US) gives vetted government customers and their partners the flexibility to architect secure cloud solutions that comply with: the FedRAMP High baseline, the DOJ’s Criminal Justice Information Systems (CJIS) Security Policy, U.S. International Traffic in Arms Regulations (ITAR), Export Administration Regulations (EAR), Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) for Impact Levels 2, 4 and 5, FIPS 140-2, IRS-1075, and other compliance regimes.

Contact us about cloud-based PKI solutions

Fill in your contact information below and we will get in touch with you.

    I accept that PrimeKey stores my information, and I accept cookies for analysis and business identification. Read more about cookies and privacy policy here.