KeyScaler

KeyScaler™ delivers comprehensive IoT security automation at scale. Secure device registration and provisioning, automated password management, policy-driven crypto, and credential management, along with the delivery of Public Key Infrastructure (PKI) certificates to devices without human intervention.

• Security Suite for Microsoft Azure IoT
• Enhanced security for Microsoft customers and partners to accelerate, optimize, and leverage their investments in IoT deployments with connectors for Azure Sphee, Azure IoT Central, Azure IoT Hub, Azure Key Vault, Azure IoT Edge, Azure DPS, Microsoft Active Directory, Azure Event Hub data privacy, Active Directory Certificate Services, and Windows credential manager.
• Security Suite for PTC ThingWorx 
• Simplified integration between ThingWorx and KeyScaler offering data security, device authentication, management interface, and device authorization.
• Amazon Web Services (AWS) IoT PKI Connector
• A service connector, using the AWS SDK, supports certificate provisioning, revocation as well as ‘thing’ creation and certificate assignment.
• Enhanced Platform Integration Connector
• Flexible interface to integrate with ANY external platforms and services. Provides real-time notification of events that occur in KeyScaler.
• Automated Certificate Management
• Automated certificate provisioning and management for IoT devices and gateways.
• Internal Private PKI
• Customers can generate their own internal private root certificate authority and key, to enable provisioning of self-signed certificates to devices and the AWS IoT service.
• Secure Soft Storage
• To prevent theft of certificates and unauthorized usage, the agent stores the certificate and associated key pair in an encrypted state. Descryption is available only to authorized applications as defined in the policy on the KeyScaler server.
• End-to-End Data Security
• Granular, efficient policy-driven crypto that provides secure, end-to-end delivery and storage when using third-party networks and cloud services.
• Hardware Security Module (HSM) Support
• KeyScaler supports nCipher Security and Thales/Gemalto Hardware Security Modules (HSM) as a Root of Trust (ROT) to provide secure storage for KeyScaler system keys, secure execution, and private PKI root CA key.
• HSM Access Controller 
• Ability to manage a connected HSM using KeyScaler APIs for the purpose of key generation, data signing, data crypto, and general public key storage. Secure Data Repositories provide centralized encrypted data stores used to securely store data that can be transmitted to authorized entities.
• PKI Signature+
• Designed for low-power devices, where Dynamic Device Key Generation (DDKG) is not suitable. Using asymmetric key signatures with automated authentication key rotation policies to deliver strong device identity.
• Automated Password Management
• Automatically set and manage passwords on devices and rotate as per policy, with the ability to restrict access to privileged individuals only.
• Development Tools
• Client-side SDK and development libraries provide an easy integration method into new and existing applications. Server-side REST APIs make it simple to consume KeyScaler services.