As one of the world’s most deeply rooted certificate authorities, GlobalSign is the leading provider of trusted identity and security solutions enabling businesses, large enterprises, cloud-based service providers and IoT innovators worldwide to conduct secure online communications, manage millions of verified digital identities and automate authentication and encryption. Its high-scale Public Key Infrastructure (PKI) and identity solutions support the billions of services, devices, people and things comprising the IoT.
Specifically, GlobalSign and its new Atlas platform, shoulders the burden for stressed IT departments, automating and managing the most crucial of identity and security functions, including Enterprise Integrations for Active Directory, Mobile Device Management (MDM) Platforms, Document Signing Workflows and PKI Lifecycle Management to Secure Websites or Servers (SSL/TLS), Authenticate Users & Machines, Encrypt & Secure Emails (S/MIME), Digitally Sign Documents, Deploy PKI for Mobile and Digitally Sign Code.
GlobalSign’s CA Services Expand or Replace In-house PKI, including Custom and Trusted Root Programs, Trusted Timestamping Services and Hosted OCSP Services.
A subsidiary of Japan-based GMO Cloud KK and GMO Internet Group, GMO GlobalSign has offices in UK, Europe, America and Asia.
Share
Main office address
GMO GlobalSign Ltd
Springfield House
Sandling Road,
Maidstone, Kent
ME14 2LP
Key Products / Services / Sectors (USPs)
GlobalSign has long been know as being an originating, globally trusted Certificate Authority (CA), along with its easy-to-use managed PKI platform. GlobalSign’s next-generation Atlas platform is the future in PKI identity management and certificate automation – replacing the need for a homegrown private Certificate Authority entirely. GlobalSign’s Atlas empowers IT teams to flexibly manage and authenticate a broad array of identities – users, machines, IoT and mobile devices, and servers – without needing to worry about complex tasks including key management, directory integration, and support of multiple protocols needed to cover a wide array of endpoints. Designed to be available 24/7, with the ability to scale to any use case and any volume of issuance. And, whether it’s for your internal security posture or to meet strict industry regulations, Atlas can help organizations meet requirements around two-factor authentication and encryption of data in transit and at rest. Today, any organization can put the weight of their PKI and automation on Atlas’ shoulders.
Combined with GlobalSign’s Auto Enrollment Gateway (AEG), any organization can now install a direct gateway to Atlas on the edge of their network and gain access to the world’s most powerful cloud CA. This is both a ready-made solution for automation and a turn-key method for any company that hasn’t already migrated to remote work. It’s truly the best of both worlds: All the expertise and experience you expect from working with a CA organization, and all the benefits of having dedicated hardware and resources that can handle the technical CA functions your organizations requires at any scale.
Finer features of GlobalSign’s Atlas and AEG include: Auto-enroll new devices • Deployment of digital certificates to AD managed end points on Windows, MAC or Linux • Automate deployment of digital certificates to MDM connected devices (Intune, JAMF) • Archive and recover S/MIME key materials • Create a dedicated Dev Ops PKI pipeline • Set policies that restrict certificate usage as needed • Manage approvals for which users and devices may receive certificates • View reports on certificate order details • Support for protocols like ACME v2, SCEP, and an easy-to-use Certificate Inventory Tool
GlobalSign’s Atlas is also integrated with a cloud-based Digital Signing Service (DSS) making digital signatures accessible to organizations through document workflow providers, creating a true end-to-end solution and lowering barriers such as cost, hardware requirements, maintenance, and internal expertise. Bringing together all the cryptographic components necessary to offer the most feature rich and collaborative digital signature service (it is also the most secure — with no database of private keys to compromise and no documents are ever stored, even in hashed forms). Features include integration with document signing applications (Adobe Sign, DocuSign, Microsoft 365 and more), private key management and storage, wide industry compliance, easy deployment, cryptographic signing components (e.g., Certificates, OCSP, CRL, Timestamping), High Availability and Disaster Recovery, Individual or organization-level signing identities, Trusted AATL Member, PKI-based Signatures, and Third Party Timestamping. Email us for more info.
Finer features of GlobalSign’s Atlas and AEG include: Auto-enroll new devices • Deployment of digital certificates to AD managed end points on Windows, MAC or Linux • Automate deployment of digital certificates to MDM connected devices (Intune, JAMF) • Archive and recover S/MIME key materials • Create a dedicated Dev Ops PKI pipeline • Set policies that restrict certificate usage as needed • Manage approvals for which users and devices may receive certificates • View reports on certificate order details • Support for protocols like ACME v2, SCEP, and an easy-to-use Certificate Inventory Tool
GlobalSign’s Atlas is also integrated with a cloud-based Digital Signing Service (DSS) making digital signatures accessible to organizations through document workflow providers, creating a true end-to-end solution and lowering barriers such as cost, hardware requirements, maintenance, and internal expertise. Bringing together all the cryptographic components necessary to offer the most feature rich and collaborative digital signature service (it is also the most secure — with no database of private keys to compromise and no documents are ever stored, even in hashed forms). Features include integration with document signing applications (Adobe Sign, DocuSign, Microsoft 365 and more), private key management and storage, wide industry compliance, easy deployment, cryptographic signing components (e.g., Certificates, OCSP, CRL, Timestamping), High Availability and Disaster Recovery, Individual or organization-level signing identities, Trusted AATL Member, PKI-based Signatures, and Third Party Timestamping. Email us for more info.
Services
Supports eID
Yes
No
Area of focus
Consumers
Internal services (enterprise)
Identity provisioning (IdP)
As-a-Platform
API
As-a-Service
Wallet/SDK
Hub
On-board RPs
Offer translation of protocols
Handles federation
Integrate RPs/IDPs/Wallets
Can offer consent capture if required
Attribute brokerage
Can capture self-asserted
Can verify self-asserted
Can integrate with third parties (eg Open Banking)
Supports verified claims (VCs)
Verification services/support
Not supported
N/A
Yes – third party verifiers used (including Open Banking)
Yes – In-house verification service
Authentication
Password/username
Multiple factors (MFA)
Biometric
FIDO
Mobile device
Other
Data store functionality
Attribute storage
Attribute sharing
Configurable for specific sectors (e.g. health)
Use decentralised stores (eg Wallets or online)
Can offer consent capture/handling
Account management for users
Yes
No
On request
Account recovery
Self-service
Help desk
Key management required by user
Channel support
Omni-channel
Web
Mobile
Digital assistant
Wallet
Other
Protocol support
SAML 2.0
OIDC
Oauth
UMA
DID (decentralised identifiers)
Third party capability
External
Internal
Other
Other
Risk-based authentication
Anti-fraud support
Data minimisation support
Consent management
Variable registration (multi-user journey support)
Support for accessibility
Logging and audit
Billing system
User Journeys
Self-service
Offline options, incl. F2F
Upgrade paths to increase assurance levels over time
Creation of delegated accounts
Rules
To modify system behaviour
For risk-based authentication
To use events to drive transactions
To manage user journeys, including verification
To handle LOA upgrades/downgrades
API available
Yes
No
Wallet-based systems
Wallet available
SDK available
Decentralised
Handle payments
Handle identity document’s (eg drivers license)
Handle health information (eg vaccine certificates)
Other
Testimonials
"Having a dedicated person to work with really set GlobalSign apart. I have an account manager who truly understands my requirements and the details of the regulation. We were really impressed with GlobalSign as they helped us with our authentication certificates. They offthe pricing, products, and expertise to meet our needs, and we were able to make the switch really easily without burdening our team. Now we can manage all our PKI needs from one account."
South East Water
"Working with GlobalSign and KeyTalk was super. The team was extremely proactive, responsive, and sympathetic to some of the technical issues we were facing. There was communication and transparency throughout the implementation process.
I would wholeheartedly recommend GlobalSign as a solution for other organizations who have the same type of security needs for their internal and external communications."
Finance in Motion
"The existing relationship we had with GlobalSign, being a customer of their HSM solution since 2013, along with their competitive pricing is what led to our decision to utilize their digital signing service for our accountancy customers."
IRIS
Clients
Partners
Adobe
Microsoft
DocuSign
Venafi
Infineon
Main point of contact
Name: James Coleman
Email: james.coleman@globalsign.com
Phone: +44 1622 766 766