Bring certificate lifecycle management and Strata™ Cloud Manager better together with
Next-Gen Trust Security.
Next-Generation Trust Security unifies public and private trust under a single
control framework. It extends Strata™ Cloud Manager with integrated certificate
lifecycle governance and SaaS-based private PKI services. By shifting from periodic
infrastructure management to continuous operational control, this solution ensures
that the systems validating trust and authenticating identities depend on real-time
certificate state. The result is sustained network resilience and governed
certificate velocity at an enterprise scale.
Key capabilities include:
Unified Discovery and Inventory:The discovery engine scans
public and private networks, internal and external CAs, cloud-native key
stores, Kubernetes clusters, and network appliances. It creates a single
authoritative inventory that provides visibility into expiration status,
trust hierarchies, and policy alignment across the entire certificate
estate.
Policy-Driven Automation: Automated workflows govern the
entire certificate lifecycle, covering issuance, installation, validation,
renewal, and retirement across enterprise environments to prevent outages.
It also supports post-quantum readiness and enables organizations to manage
the increasing renewal velocity associated with shortened certificate
lifecycles.
SaaS-based Private PKI Services: The SaaS-based private PKI
capability replaces hardware-dependent, on-premises CA environments with
cloud-delivered PKI services that provide HSM-backed secure operations and
high availability across regions.
Crypto-Agility: The CA-neutral architecture enables
organizations to execute controlled transitions, such as algorithm updates
or CA changes, without destabilizing production systems.
Outage Prevention: Next-Generation Trust Security preserves
enforcement continuity and enterprise-wide certificate health by ensuring
certificates supporting critical services are renewed and validated before
expiration. Continuous monitoring and automated lifecycle controls reduce
the risk of certificate-related failures across your operational
environment.
After activation, you can access and manage Next-Generation Trust Security
directly within Strata Cloud Manager. From a centralized interface, you can align
cryptographic trust with your network control plane, ensuring consistent governance
across firewalls, SASE services, and enterprise workloads.
