• Identity & Access Management

    Integrate physical and logical security requirements

30.10.2024 14:29

Peak Security Suite (PSS): Process-driven certificate lifecycle management for secure identity management

In an increasingly digitalized world, the management of identities plays a central role. Companies need to manage a large number of identities and certificates efficiently and securely - examples include the identities of employees, visitors and external personnel as well as their various certificates for secure communication and authentication. Traditional approaches often reach their limits. The Peak Security Suite (PSS) offers a powerful solution here: process-controlled Certificate Lifecycle Management (CLM) for end-to-end identity and certificate management.

[In der Blog-Übersicht wird hier ein Weiterlesen-Link angezeigt]

Challenges in certificate management

The management of digital identities and certificates is complex and error-prone. Companies often face the following challenges:


  • Diversity of identities: from employee ID cards to certificates for external parties - a wide variety of identities need to be managed.
  • Different types of certificates: certificates serve different purposes, e.g. e-mail communication (SMIME) or internal applications.
  • Security requirements: the secure issuance and management of certificates is necessary to ensure the confidentiality of communications.
  • Compliance and audits: management must comply with legal standards and be auditable.
  • Integration requirements: Various certification authorities (CAs) and hardware security modules (HSMs) must be integrated.


A flexible solution for managing multiple identities in modern organizations

The Peak Security Suite (PSS) simplifies identity and certificate lifecycle management by centralizing the administration of all identities and certificates in the company. The most important functions include


  • Comprehensive identity management: PSS allows centralized management of employees, visitors and external personnel.
  • Flexible, process-controlled CLM: PSS enables customer-specific and standardized processes for certificate management that cover the entire lifecycle of certificates in a secure and audit-proof manner.
  • Automated and manual approvals: PSS support both automated and manual approvals to ensure an optimal balance between security and efficiency.
  • Customized roles and interfaces: PSS provides customisable user interfaces and roles to increase ease of use and minimise the need for training.
  • Integration of Certificate Authorities (CAs): PSS supports numerous CAs, including Microsoft CA and OpenXPKI, and enables their active or passive integration.
  • Multi-CA support: PSS has the flexibility to separate publicly trusted and internal certificates, which is particularly cost-effective.
  • Standard protocols and proxy mode: PSS offers support for ACME, EST and SCEP and enables rule-based selection of the appropriate CA.
  • HSM integration: PSS supports HSMs such as Thales Luna and YubiHSM 2 for secure key management.
  • Mobile Device Management (MDM): PSS enables the protection of mobile devices and network components that are connected via an MDM system.


The integration of the PSS into an existing company infrastructure can take many forms. The following graphic shows a possible integration scenario.


Use case: Separation of public and internal certificates

A typical scenario for the PSS is the separation of expensive, publicly trusted certificates and internal certificates at no additional cost. For example, SMIME certificates for secure e-mail communication can come from a public CA, while intranet certificates are provided by an internal CA. The PSS enables flexible control of which CA is used for which certificate and centralizes the management of all certificates.


Flexibility and security for the digital world

With the Peak Security Suite, companies are optimally equipped to meet the challenges of a modern, digitalized world. With its centralized management, flexibility in process design and integration of CAs and HSMs, the PSS minimizes security risks while ensuring compliance with legal requirements. The ability to flexibly design processes and integrate both manual and automated approvals makes the PSS a valuable tool for any organization.


Find out more about the Peak Security Suite and optimi6e your certificate management - contact us today.


Connected solutions

You can click on the links to get more information about the individual components