On October 31, 2024, DigiCert launched the General Availability (GA) of DigiCert Device Trust Manager, a significant milestone in delivering digital trust solutions that meet the complex security needs of IoT devices from birth to decommissioning.

DigiCert Device Trust Manager is designed to provide comprehensive device identity and authentication, secure firmware updates, and lifecycle management for connected devices. Built on the DigiCert ONE platform, Device Trust Manager integrates into various IoT platforms, empowering manufacturers, service providers, and enterprises to maintain a high level of security and compliance throughout the device lifecycle.

How DigiCert Device Trust Manager addresses a growing need

With the rapid growth of connected devices across industries, from automotive to healthcare, securing and managing these devices has become paramount. DigiCert Device Trust Manager addresses this need by providing:

• Secure device onboarding and registration: Establishes trust at the earliest stages by using unique device identities and cryptographic credentials, issuing “birth” certificates and operational certificates for accessing IoT platforms, APIs, and machine-to-machine communications.
• Streamlined compliance with evolving IoT regulations: Reduces compliance overhead by ensuring adherence to international security standards and emerging regulations like the UK Product Security and Telecommunication Infrastructure, U.S. Cyber Trust Mark, EU Cyber Resilience Act, reducing compliance overhead. 
• Centralized management and monitoring: Offers a single pane of glass to manage device identities, monitor security posture, and push software updates across geographically distributed deployments.
• Scalable and future-proof: Supports various device types and configurations, making it adaptable for both small-scale and large-scale deployments. DigiCert Device Trust Manager is built to scale and incorporates post-quantum cryptography (PQC) support, ensuring security and compliance today and in the future as new cryptographic threats emerge.

How does it work?

DigiCert Device Trust Manager simplifies IoT device security by managing device identities and securing communications throughout the device lifecycle. At its core, the solution ensures that each device is authenticated and trusted before connecting to the network, and that ongoing communications remain secure and compliant.

The platform operates using a two-tiered certificate management approach.

Birth certificates

These are cryptographic certificates issued at the manufacturing stage, serving as the foundational identity of each device. Much like a birth certificate for a human, these certificates establish the unique identity of a device and ensure that only legitimate, trusted devices can join your network. They’re immutable and provide a permanent record of the device’s origin.

Operational certificates

After deployment, devices are issued operational certificates—similar to a passport. These certificates serve as the device’s active identity, enabling secure communication and authentication throughout its lifecycle. Unlike birth certificates, operational certificates need to be renewed or reissued periodically to ensure the device maintains compliance and trustworthiness as it operates over time.

Get ready for the future of device security

DigiCert Device Trust Manager is more than just a security tool—it's a comprehensive solution that brings simplicity and strength to IoT security. Visit digicert.com/device-trust-manager or get in touch to learn how Device Trust Manager can help secure the future of your connected devices.

The latest developments in digital trust

Want to learn more about topics like device trust, post-quantum cryptography, and the Internet of Things? Subscribe to the DigiCert blog to ensure you never miss a story.