ISARA Catalyst

AGILE DIGITAL CERTIFICATE TECHNOLOGY

THE CHALLENGE TO LONG-TERM AUTHENTICATION

Today, enterprise IT teams and connected device manufacturers increasingly use public key infrastructure (PKI) for authentication and encryption. However, the digital certificates and signatures within these systems use security measures vulnerable to quantum-enabled attacks.

Large-scale quantum computing is expected in eight to ten years. Makers of durable connected devices and IT teams responsible for complex PKIs need solutions today to prepare for the quantum threat or risk losing control of devices and exposing mission-critical information in the quantum age.

 

The challenge: current digital certificates can only manage one signature algorithm limiting when and how to migrate to quantum-safe security. Bridging the gap between current and quantum-safe security – without affecting existing systems, adherence to standards and end users – requires a new approach.

INTRODUCING ISARA CATALYST

ISARA Catalyst™ Agile Digital Certificate Technology enables a seamless, cost-effective and simplified migration to quantum-safe security today to protect investments in durable connected devices and the Internet of Things (IoT) and complex public key infrastructures with no impact to end-users.

Using this technology, authenticate using upgraded digital certificates which can be successfully introduced into existing systems because they’re backward compatible and adhere to global standards.

WHAT IS IT?

ISARA Catalyst is an optional X.509 digital certificate extension that allows you to seamlessly integrate quantum-safe security into your certificate and PKI management products today while being backward compatible with legacy components and adhering to global standards.

INTEGRATE ISARA CATALYST FOR SEAMLESS QUANTUM-SAFE AUTHENTICATION

EASILY CREATE QUANTUM-SAFE CERTIFICATES NOW

Provide a clear path to quantum-safe security for your digital certificate customers by being able to use both classic and quantum-safe algorithms in one X.509 digital certificate.

  • The first step towards quantum-safe security is building in crypto-agility, as recommended by NIST
  • Use the ISARA Radiate™ Security Solution Suite for quantum-safe security, such as stateful hash-based digital signatures
  • Where more robust security is needed, ISARA Catalyst works in conjunction with hardware security modules (HSMs)
Duplicate vs Agile Certificate

BACKWARD COMPATIBLE WITH LEGACY COMPONENTS

Use agile certificates within a system that contains both legacy and upgraded components, to avoid costly service outages due to broken chains or the need to duplicate public key infrastructures.

  • Enable a “phased approach” to upgrades – secure your most mission-critical assets now and other components later as part of your regular upgrade schedule
  • A duplicate quantum-safe infrastructure is not necessary; save time and resources by not having to manage two separate infrastructures
  • No costly service outages due to broken chains from upgraded certificates encountering previously issued certificates
Backward Compatible PKI Diagram

DESIGN TO INTERNATIONAL X.509 STANDARDS

We understand the importance of standards for interoperability and security. That’s why ISARA Catalyst technology is included in X.509 digital certificate standards.

  • Create digital certificates that are compatible with legacy systems, essential for open environments such as the Internet
  • Serve security-conscious customers that require their security products to meet strict standards such as federal government, financial services, healthcare, automotive and critical infrastructure
  • For truly lasting, future-proofed security solutions, be confident that ISARA Catalyst will continue to fit into the industry standards of the future
X509 Certificate

SOLVING TODAY’S CHALLENGES
FOR A QUANTUM-SAFE FUTURE

Seamless, simplified
PKI migration

Migrating a PKI can be complex and time-consuming, and even more so if duplication is required. With ISARA Catalyst, upgrading to quantum-safe security is seamless and simplified without impact to legacy components or need to manage duplicated certificates. It can be achieved using a “phased-approach” – perfect for large, complex PKIs.

>Download the whitepaper

Future-proof durable
connected devices

The physically embedded ‘roots of trust’ used to validate the authenticity of over-the-air updates in connected devices are not quantum-safe. Quantum-enabled adversaries can then spoof software updates to take over devices. Protect your investment in durable connected devices by embedding quantum-safe roots of trust today to avoid logistically challenging and cost-prohibitive recalls in the future.

>Read the blog post

Protect critical assets now
with quantum-safe security

Quantum-safe digital signature schemes, such as stateful hash-based signatures, are mature and ready to be used today. ISARA Catalyst allows you to use both a classic and quantum-safe digital signature within one certificate to protect mission-critical, durable devices such as connected cars, critical infrastructure, medical devices and deployed military equipment.

>Read the blog post

>Read the technical research report

QUESTIONS & LICENSING OPTIONS

Are you a digital certificate provider, offer public key infrastructure solutions, and interested in licensing ISARA Catalyst for your products? Or have a question?

Our team is here to help!