P3KI Core


Authorization for the Internet of Things.

Find Out More

P3KI Core


Imagine a PKI solution that's affordable yet hard to attack, easy to setup and maintain, flexible in expressing trust, handles revocations with ease and does not require you to update certificates on devices in the field - even if things went wrong. If that sounds too good to be true, stop wondering right now and read on below to learn what P3KI Core can do for you, then give us a call.

Tell me more! Call us!

Cost Efficiency

High Availability for Next to Nothing

Using P3KI Core with a P2P backend enables you to ensure high availability using commodity hardware or cloud instances.

No Updating Certificates on Devices

P3KI Core allows you to update or revoke trust without the need to update certificates on your devices. No more update rollout plans, product recalls and expensive field-fixes.
Updating trust is effectively free.

No Central Infrastructure

No need to run central servers to keep your system alive. If you need to scale up, simply start more P2P instances either using commodity hardware or cloud instances. There's no security requirements for P2P instances, so you can run them wherever you like.

Reduced Admin Workload

Without the need to monitor and maintain central infrastructure for your PKI, you've got more time to deal with other aspects of your job.

Resilience

No Central Infrastructure

No need to have central servers for running operations or handling services like CRL or OCSP thus drastically reducing attack surface.

Peer-to-Peer Backend

The recommended backend for running P3KI Core gives you distributed and resilient storage while being very hard to attack. P3KI Core uses protocols that have already proven themselves in large scale deployments like the BitTorrent network.

Web-of-Trust

P3KI Core establishes a web of trust between participants in the network. This localizes the effect compromised nodes have on the whole network and makes migration and recovery a breeze.

Flexibility

Model Trust with Arbitrary Granularity

Trust within the P3KI Core Trust Network is expressed using scenario specific TPLs. This enables you to model exactly to the challenge you're facing. TPLs can be as coarse or fine as your task demands.

Storage Agnostic

Resilient P2P, central database, or operating totally offline. The choice is entirely yours, P3KI Core will do your bidding.

Authoriziation, Authentication, Identity

Model flexible systems able to delegate trust in a fully controlled manner to implement authorization schemes or limit access to specifically authenticated individuals. All this is possible with P3KI Core.

Customizable

Square peg, round hole is a thing of the past. P3KI Core can be molded to perfectly fit your application.

Security

Proven Security

All trust data published to the network is protected by signatures created using proven signature schemes. This ensures data can neither be forged nor changed. A formal security proof exists, proving we're as secure as the underlying crypto promitives.

Security Independent of Backend

The security guarantees offered by P3KI Core are entirely independent of the backend (P2P, database, offline) you choose. You can easily host trust data in the cloud without having to fear for your data being forged or modified.

Apache 2.0 License

Trust architecture and security software in general that is not open source so its code can be inspect cannot be trustworthy. This is why we'll release P3KI Core under a permissive open source license once it proved itself in extended field tests.