Telecommunications as a Service
The PKI as a Service Solution
The PKI as a Service (PKIaaS) solution manages the common services at building locations to support multiple-organisation tenancies. The key challenges in engineering a solution to support this capability are the solution requiring linkages between multiple identity stores, and only certain attributes (not including passwords) can be shared when these linkages are created. The infrastructure deployed must be scalable to provide support for multiple locations and organisations. The PKIaaS model allows for other organisations and their staff to utilise the shared services at the multi-organisational sites should there be a long-term requirement for colocation as well as an ad-hoc or temporary basis.
How the PKI Solution Works
The PKI solution enables:
- Organisations to retain control over their own data.
- Self-Service, wherein configuration is handled by organisations or connectivity providers.
- Extensible and integrable to support for future shared capabilities.
- Highly available and dynamically-scaling services.
Benefits of PKIaaS through TaaS
The PKIaaS solution through TaaS allows users to continue to use their existing credentials to access shared services. With this capability organisations can maintain their existing security posture by avoiding implementing trusts between themselves and other organisations, or a shared services domain. Additional benefits were realised as part of the implementation, in which other service providers were able to provide enhanced services to organisations through the integration of their applications or services with the identity brokerage service.
In utilising Cogito Group’s Identity Brokerage solution, organisations can:
- Access shared network and services infrastructure.
- Allow for multi-tenanted building use without duplication of infrastructure.
- Share the one-connection idea of the network service.
- Organisation-wide directory of users, device and other resources (e.g. meeting rooms).
- Automated provisioning and de-provisioning of access and service.