Case & Use Studies
Cogito has produced a number of award-winning ICT solutions for large private and federal organisations. We have compiled some of our most succesful case studies below.
All of Government PKI as a Service
Public Key Infrastructure (PKI) is a system of cryptographic technologies, standards, management processes and controls governing the use of digital certificates. It is an enabling technology. This means it enables users of an insecure public network (such as the Internet) to securely and privately exchange data through the use of a public/private cryptographic key pair that is obtained and shared through a trusted authority.
The PKI was expected to support a large number of users, devices, software applications, business systems and organisations acting for or on behalf of the New Zealand (NZ) Government across complex ecosystems.
Identity Brokerage
Cogito Group’s identity brokerage offering allows for a shared network and services infrastructure. It enables users in multi-tenanted government buildings to consume services without the need to duplicate the infrastructure. It is a single point of trust. Basically, it shares the one connection idea of the network service with an ‘all of government’ directory or identity store of users, devices and other resources (even down to meeting rooms).
There are a number of business drivers pushing the adoption of identity brokerage, these include:
- Reducing duplication of services through shared services among building tenants
- Removing the need to implement trusts between agency identity stores
- Reducing the cost of managing credentials
- Reducing the difficulties in complying with regulations and
- Reducing the interoperability complexities associated with supporting multiple identity protocols.
Integrated PKI & CMS
Private Client
Our client wanted to address the issue of many stove-piped security systems that didn’t talk to one another, specifically in regards to its Public Key Infrastructure (PKI) and Card Management Solution. The goal was to develop linkages and workflows to centrally manage all of their security platforms in one place. Specifically:
- Provide a holistic view of connected security systems
- Search across multiple CA’s (and CA vendors)
- Each CA has its own interface to request certificates
- Register soft certificates in an anonymous portal
- Registration from CMS portal
Convergence of Physical and Cyber Security
Private Client
Our client wanted to address the issue of many stove-piped security systems which were not integrated, particularly their Public Key Infrastructure (PKI) and Card Management Systems (CMS). The project goal was to develop automatic workflows to centrally manage all of their security systems. Cogito Group implemented Jellyfish to connect our client’s disparate systems.
All-In-One IdAM Solution
Private Client
Our client wanted to ensure appropriate access to resources across increasingly heterogeneous technology environments. The goal was to improve security, manage access for internal users and provide simple and secure self-service access to consumers of our client’s products and services.
Our solution provided IdAM services for the web, cloud and mobile devices, in a highly scalable, modular and easy to deploy architecture, ensuring:
- Federation with Office365
- Availability and Performance
- Single Sign-On
- Standards-Compliant
- Multi-factor Authentication Extensibility
Protecting New Zealand’s ePassports
Department of Internal Affairs
Cogito Group deployed Jellyfish in an as a Service Public Key Infrastructure (PKI) offering for the client. Jellyfish’s PKI service adds a layer of security to traditional non‑electronic passports by embedding an electronic chip in the passport booklet that stores the biographical information visible on page 2 of the passport, as well as digital security features.
By adhering to the ICAO security standards, New Zealand now confirms to borders and customs the authenticity of its passports.
Deploying ePassports was a complex 15-month long project, which dealt with both New Zealand Government agencies and major international service providers.
Creation of Digital Health Certificates
New Zealand Ministry of Health
New Zealand’s Ministry of Health (MoH) required an authentication solution for creating digital COVID-19 health certificates.
Cogito Group offered a solution for MoH digital health certificates that included integration with APIs for the retrieval of data of the information required to create the certificates, the signing of those certificates by the trusted PKI, and an auditable solution allowing a high trust environment to be established that will allow the created digital certificates to be recognised and trusted internationally.
Cogito was also able to leverage their existing capability already used for submitting requests for signing for DIA ePassports.
Related
Check out our related content below:
