We’ve got some exciting product updates to share as we wrap up 2024. EJBCA 9.1 and SignServer 7.1 are now available for customers, regardless of deployment type, and they come packed with features to make your PKI and signing stronger than ever. Let’s break down what’s new and why you should care.
New Post-Quantum Cryptographic Algorithms
Keyfactor’s EJBCA offers PQC certificate generation with the new ML-DSA algorithm
We’re diving into post-quantum cryptography (PQC) like an enthusiastic kid on Christmas morning. With NIST recently standardizing post-quantum cryptographic algorithms, we’ve updated EJBCA to support the ML-DSA algorithm for certificate generation. Plus, SignServer now lets you sign using both ML-DSA and SLH-DSA algorithms.
Why is this a big deal? As quantum computing becomes a reality, it’s crucial for organizations to start testing and implementing these new algorithms now to get ahead of the curve. Don’t know where to start? Check out our PQC resource center.
Matter Certificate Extensions for Smart Devices
If your business develops or utilizes smart devices, you’ll love this next update. EJBCA 9.1 now supports x.509 certificate extensions for Matter smart devices. This means that operators and internet service providers can keep devices trusted throughout their lifecycle, no matter how many times users change or networks shift. The best part? Automatic certificate renewal ensures continuous security without any hassle. Plus, it helps you stay compliant with regulations like the European Cyber-Resilience Act—talk about a win-win!
Strengthening our Customers' Software Supply Chains
With software supply chain attacks on the rise, up by 64% year-over-year according to the 2024 Verizon DBIR, we’re stepping up our game here too. Our new CVE mitigation processes come with detailed impact analysis documentation, helping our customers deliver secure software while meeting requirements like those in the SLSA framework.
In short, we’re making it easier for you to keep your software secure and transparent to build trust with your own customers. Learn more about all the other ways our new integrated solution with Chainloop is helping SignServer customers deliver trusted software faster.
Improved Standards Support and New Functionality
Last but not least, we’ve improved our standards support. EJBCA 9.1 now includes S/MIME CAA validation for email certificates, ensuring secure email delivery that meets industry standards. And for those developing Windows software, SignServer 7.1 supports signing AppX bundles, making cross-architecture development a breeze.
Don’t Get Left Behind in the New Post-Quantum Era
Keyfactor’s PQC Lab on Microsoft Azure s a quick, easy way for IT and security teams to get started with PQC testing.
So, there you have it! EJBCA 9.1 and SignServer 7.1 deliver new features and functionality while continuing our commitment to post-quantum cryptographic support across our entire product portfolio.
Not a customer and interested in PQC? Check out our Keyfactor PQC Lab, a complimentary Azure Marketplace tool to generate and test quantum-ready certificates in a safe environment. Our gift to you this holiday season.
