Cloud Security Innovation of the Year
DigiCert CertCentral is an all-in-one digital certificate management solution for cloud TLS/SSL and other digital certificate types. CertCentral comprises the most modern technologies, providing customers and enterprises with total control and automation over their certificate security, management and compliance.
CertCentral allows an enterprise to manage everything connected to its TLS certificates in one place and includes several unique features that set it apart from standard management consoles. These include an ability to discover and manage all publicly and privately trusted certificates across the enterprise, with automated continuous search and monitoring capabilities. The platform also automates certificate management workflows via REST and GraphQL APIs and industry standard protocols such as ACME. This has proven particularly useful for large enterprises and service providers including PayPal, Verizon, and CloudFlare by allowing seamless integration of TLS certificate management into their own internal security management platforms and customer-facing self-service control panels. The platform also supports enhanced security controls, with SAML single sign-on, multi-factor authentication, and IP address restrictions for certificate requests.
The combined capabilities of CertCentral simplify the entire lifecycle by consolidating tasks for issuing, installing, inspecting, remediating, and renewing certificates. In terms of customer benefits, one example is AVEVA, the world’s leading provider of design, engineering, construction and industrial software, which employs over 4,400 staff at 80 locations in more than 40 countries. Digital certificates support operations at 100k+ sites deployed globally within a business that handles 10 trillion industrial transactions daily and over 12 petabytes of data transferred annually.
When AVEVA merged with the industrial software arm of Schneider Electric in 2018, the AVEVA IT operations
team began assessing combined IT practices. As a newly consolidated company with offices around the
globe, its goal was to centralise resources, streamline processes, and still meet the localised needs of each
business division and region. Its assessment pointed to gaps in SSL management caused by a process for issuing and tracking digital certificates that was “piecemeal.”
Software developers bought certificates as needed for projects, IT staff bought certs as requested for users, and both groups bought certs from multiple CAs. Since adopting CertCentral, the IT operations team now manages 43 certificates in the platform and is migrating old certs as they expire. It expects that number will soon exceed 200. In addition to the platform’s overall ability to increase awareness and proactivity within its SSL landscape, AVEVA’s favorite CertCentral feature is the discovery tool. This tool enables IT staff to track where legacy certificates were acquired, which is critical in a multi-company merger environment. Key benefits include:
• improved operations and certificate tracking,
• alignment with its cloud- and security-first approaches,
• increased awareness and proactivity within its SSL landscape, and
• the ability to integrate a domain-name scanning tool to scan for rogue servers.