Cybersecurity PKI Services has implemented a new Certificate Management System (CMS) to generate and manage client and web public key infrastructure (PKI) certificates. A PKI certificate is a critical cybersecurity component used to authenticate users, devices, and servers online.
This new CMS delivers a user-friendly, unified automation and management platform to certificate owners throughout Providence enterprise networks. Along with this new CMS, we will be launching a new Root Certificate Authority, helping us transition the PKI service line to a more mature, modernized, and secure PKI trust model.
New Providence CMS features
- Full certificate inventory views for each team that owns PKI certificates, including validity dates, and in some cases the ability to manage and provision your own PKI needs.
- Certificate automation to prevent outages.
- Full enterprise certificate scanning capability.
Next Steps
Over the coming months, we aim to schedule the transitioning of all existing legacy Providence, St. Joseph, and Kadlec PKI certificates. During this transition we will decommission outdated encryption standards and pull everything under one management platform. Going forward, all Providence PKI certificates will need to:
- Annual reissuance
- Minimum SHA256 with 2048-bit RSA encryption
- Issued by the Providence PKI services team using the new Zero Touch PKI Root Certificate Authority or our approved public certificate issuer, GlobalSign
This new CMS tool and PKI certificate standard are critical to bringing Providence in line with modern cybersecurity best practices. We appreciate your support during this important enhancement of our PKI certificate process. Certificate owners should begin reaching out to EISPKIServicesDL@Providence.org to schedule transitioning certificates to the new CMS.