Security News > 2024 > April > EJBCA: Open-source public key infrastructure (PKI), certificate authority (CA)
It can handle almost anything, and someone once called it the kitchen sink of PKI. With its extensive history as one of the longest-standing CA software projects, EJBCA offers proven robustness, reliability, and adaptability.
"EJBCA was created as an open-source project. The first version of the software was released as open source in December 2001. The ability to make a living from working with it and form a good company with many developers working on open source came later when the co-founders of PrimeKey and I realized that it was something we could do," Tomas Gustavsson, the creator of EJBCA, told Help Net Security.
EJBCA is developed in Java and runs on a JVM such as OpenJDK, available on most platforms.
Another design criterion was that EJBCA should be possible to adapt to an organization's workflow, not the other way around that the workflow had to follow the software.
Future plans and download. "With PKI living up in the last 5-10 years and being a critical component in security infrastructure, EJBCA needs to continue to evolve to meet new needs. There are so many new use cases, not the least in industry, automotive, and other relatively new use cases for security. This means following the market and standardizing all these new areas that are popping up. There is constant development needed because every field of use, for different reasons, invents its own special details that need new features," Gustavsson explains.
"The migration to PQC will be the biggest cryptographic migration the industry has seen. EJBCA should help the world transition to quantum-safe cryptography. PKI will be an ever-more integrated component of cyber security, and as such, it needs to be well integrated, automatable, easy to deploy, and very secure," Gustavsson concluded.
News URL
https://www.helpnetsecurity.com/2024/04/09/ejbca-open-source-pki-ca/