PKI CREDENTIAL MANAGEMENT

Deploy PKI credentials to users simply, securely and at scale.

Manage digital identities, enable passwordless strong authentication, and empower your users to securely sign transactions, encrypt emails and authenticate into the systems, applications and networks they need access to.

Key MyID PKI capabilities include:

Issue cryptographically protected digital identities to individuals using public key infrastructure (PKI) to smart cards, USB tokens, smartphones and virtual smart card enabled technology
Configure certificate and device issuance policies, ensuring the right people receive the right digital identities
Issue credentials via face-to-face, centrally or via self-service
Provide high levels of user service, with simple process-driven features for help desks to issue replacement devices upon loss, or re-enable locked devices
Maintain full auditability and reporting – allowing visibility of who issued which digital identities to which users and on what device, helping with external audits and compliance with identity management guidelines
Enable strong authentication for end users via their mobile device without the need for additional hardware or server software

FEATURE RICH AND PROVEN PKI CREDENTIAL MANAGEMENT

Manage your public key infrastructure (PKI) strong authentication deployment on-premise or in the cloud with MyID credential management.

Easy to integrate – MyID has out-the-box connectors that provide a plug-and-play level of integration with certificate authorities, card printers, HSMs and MDM vendors. A range of APIs also allow for integration with identity management applications.
Extensive functionality – Manage credentials across smart cards, USB tokens, virtual smart cards and mobile devices. Benefit from an operator desktop for administration and management. Enable self-service for end users with a kiosk and client application. Manage PKI with FIDO2 for integrated identity management.
Simple to use – one system to manage your PKI deployment for system administrators and system operators. MyID’s process automation can perform batch operations and minimise operator time required.
Minimise support demands – With MyID’s self-service functionality you can enable users to self-serve by collecting device credentials or updating their digital identity themselves.

Easy to use – once a credential has been collected, a user is able to take advantage of email encryption, document signing and strong authentication a simple user-friendly UX
Convenient – users can authenticate with a simple PIN, fingerprint or facial match

High security – user authentication uses highly secure PKI credentials backed by two-factor authentication
Audit – the system provides a digitally signed audit record of each event which can be used for non-repudiation, audit evidence and investigation
Low-impact on end users meaning high security doesn’t get in the way of day to day business operations

Device Flexibility

Technology	Vendor	Product
Smart Cards	NXP	Athena IDProtect
	Thales	ID Prime smart card ID Prime PIV smart card
	Giesecke & Devrient	SmartCafe Expert SCE PIV card
	Idemia	ID-One Cosmo ID-One PIV
	SafeNet Assured Technologies	SC650
	T-Systems	TCOS smart card
	Cryptas	egofy card
Mobile Device Management	VMware	AirWatch Workspace ONE
Mobile Device Management	Microsoft	Intune
USB Tokens	Yubico	Yubikey Yubikey FIPS
USB Tokens	Thales Trusted Cyber Technologies	eToken eToken FIPS
Certificate Authorities	DigiCert	DigiCert MPKI/ DigiCert ONE
	Entrust Datacard	Entrust Authority PKI
	HID Global	Indentrust PKI
	Microsoft	Certificate Services
	PrimeKey	EJBCA
	Verizon	UniCERT
Virtual Smart Cards	Microsoft	TPM Virtual Smart Card Windows Hello for Business
Virtual Smart Cards	Cryptas	Cryptas VSC
Hardware Security Modules	Thales	Data Protection on Demand
	nCipher	nShield HSM
	Thales Trusted Cyber Technologies	T-Series HSMs
Image Capture	Webcam	Webcams supporting video for windows
	Document Scanners	Scanners supporting WIA2 integration
	Facial Biometric Capture and image quality checks	Canon EOS Rebel Logitech HD Pro
	Idemia	PIV card production bureau
Fingerprint Capture	HID Global	Digital Persona Eikon Touch
Fingerprint Capture	SecuGen	Hamster/Hamster Pro ID/USB SC/PIV
	HID	Guardian Patrol
	Thales Greenbit	DactyScan 84c
	Integrated Biometrics	Kojak Five-0
	Jenetric	LiveTouch Quattro
Mobile OS	Apple	iOS
Mobile OS	Google	Android
Smart Card Printers	HID	Fargo Card and ID Badge Printers
	Entrust	Datacard Printers
	Matica	XID Printers

MYID PKI IS FOR

Large enterprises who want to protect their networks, systems and cloud-based resources with the most secure method of employee authentication
Governments who wish to deploy PKI-based digital identities to citizens
Governments who wish to digitally transform their citizen service delivery by embracing mobile
Organisations wishing to deploy user credentials to a wide range of devices including smart cards, USB tokens, virtual smart cards and mobile devices
Organisations who want an easy to use solution for IT to issue and lifecycle manage user credentials, from thousands to millions of end users
Organisations who need a system flexible enough to adapt to existing business processes and integrate with existing infrastructure
Organisations who want to deliver passwordless two-factor authentication for end users, across the technology they want to use

USE MYID PKI TO

Issue cryptographically protected digital identities to individuals using public key infrastructure (PKI) to smart cards, USB tokens, smartphones and virtual smart card enabled technology
Configure certificate and device issuance policies, ensuring the right people receive the right digital identities
Issue credentials via face-to-face, centrally or via self-service
Provide high levels of user service, with simple process-driven features for help desks to issue replacement devices upon loss, or re-enable locked devices
Maintain full auditability and reporting – allowing visibility of who issued which digital identities to which users and on what device, helping with external audits and compliance with identity management guidelines
Enable strong authentication for end users via their mobile device without the need for additional hardware or server software

MYID PKI FOR SYSTEM ADMINISTRATORS

Systems administrators use MyID to configure their certificate and device issuance policies, ensuring the right people receive the right digital identities. Built to integrate with infrastructure such as certificate authorities, directories, identity management solutions and mobile device management systems (MDMs), MyID minimises any impact on the existing environment reducing deployment times and operational costs.

MYID PKI FOR SYSTEM OPERATORS

For operators, MyID provides all the functions needed to issue credentials and manage their lifecycle. Supporting face to face, centralised and self-service issuance, MyID enables devices to be deployed quickly and in high volumes. Where users need assistance, e.g. to issue a replacement device upon loss, or to re-enable a locked device, MyID provides help-desk operators with simple process-driven features to ensure continuity of service without impacting security.

MYID PKI FOR END USERS

End users can perform tasks such as collecting new certificates at their own desktop via a simple self-service application, designed to walk users through processes in simple intuitive steps, it effectively reduces operational costs and the need for end user training.

BENEFITS OF MYID PKI

Secure

Replace passwords with strong two-factor authentication, providing the most effective protection against the number one cause of data breach - weak or compromised user credentials

Simple to Use

Shaped around ease of use both for operators and end users, MyID guides users through processes, reducing day to day operational costs and ensuring high levels of user adoption

Integration flexibility

MyID is developed to work with what you already have and support your existing business processes, minimising impact on your existing environment and speeding up deployment

Proven

Benefit from more than 20 years of software development, shaped by the governments and large enterprises who trust MyID to help them issue and manage digital identities to their millions of citizens and employees for simple, secure access to the information they need

Technology independent

Issue and lifecycle manage credentials across the devices you want to use. Mobile devices, USB tokens, virtual smart cards, and smart card devices are all supported by MyID

FIDO management as standard

With MyID you also benefit from a FIDO2 authenticator, meaning you can also issue and manage FIDO credentials alongside PKI

Trusted by Governments and Large Enterprises Worldwide

Where protecting systems and information really matters, you will find MyID. Whether its citizen data, aerospace and defence systems, high-value financial transactions, intellectual property or air traffic control, we are proud that many leading organisations around the world choose MyID to protect themselves against data breach and ensure business continuity.