Success Stories
Discover how Trustpoint helps organizations achieve secure and efficient certificate management in industrial environments.
Secure Onboarding
Belden Hirschmann
A Belden Hirschmann BOBCAT Switch is securely onboarded using its Initial Device Identifier (IDevID) for authentication. Trustpoint automates verification, integrates the device into a secure domain, and issues domain-specific credentials, ensuring efficient and reliable identity management in industrial networks.
OPC UA Certificate Management
PHOENIX CONTACT
A PHOENIX CONTACT PLCnext Technology device is securely provisioned with digital certificates using an OPC UA Global Discovery Server (GDS) and Trustpoint. Trustpoint, acting as a trusted certificate management backend, enables automated certificate issuance, renewal, and revocation via the EST protocol.
OPC UA Certificate Management
Siemens & Unified Automation
Certificates are issued to a Siemens S7-1500 via UaGDS, which handles centralized certificate provisioning, trust list management, and automated renewal using CMP. Trustpoint operates as the backend CA, enabling consistent and automated certificate lifecycle management.
Zero-touch Onboarding
Trustpoint Project
Automated Onboarding Key Infrastructure (AOKI) is a proof-of-concept protocol developed within the Trustpoint project to enable offline zero-touch onboarding of devices without relying on external services like MASA or a rendezvous server. It relies on mutual authentication using device-identities (IDevID) and owner-certificates (DevOwnerID).
EST Certificate Management
WAGO
A WAGO Compact Controller 100 integrates native certificate management using the EST protocol, allowing the device to securely request, enroll, and maintain its digital certificates. The resulting certificates can be applied to secure IPsec VPN connections or to protect the controller's integrated web server.