Managing Certificates

[Salvatore D'Agostino]

We are developing a service to help manage devices certificates for security systems. Most systems rely on self-signed certificates that are inherently much less secure, as this is analogous to using the same username and password across devices. This applies to any IP devices, and we are targeting cameras, and door controllers to start. Managing certificates and keys is challenging and running a certificate authority particularly so. Is this something of interest to this community? What comments or questions do people have on this topic? Thanks for your consideration and I hope everyone is having a good weekend and will have a safe and enjoyable Thanksgiving.

Best,
Sal

 

[The Automation Guy]

I'm always open to new ways of accomplishing things. That being said, you certainly aren't the first person to create software to do this. It's not wrong to want to develop something new - especially if you think you can put a "new spin" on the situation. But you would be competing with existing products and services already.

For example, Let's Encrypt is a very common way for people to get free CA certificates. Using software like Certbit and NGINX can make the process of creating and managing the certificates easier as well. Are you talking talking about something new that would replace or integrate with software like Certbit and/or NGINX?