Digital Certificates

Device Identity Certificates for Medium Device Assurance

Secure and authenticate connected systems with medium assurance IoT device certificates designed for trusted device identity and communication

Buy Now

Protect data and communications exchanged between devices in the field

IGC Medium Device Certificates are compliant with the U.S. Federal Bridge CA (FBCA) Medium Device assurance levels; these certificates are intended for use on devices that require digital signing and encryption functions.  Ideal purposes for IGC Medium Device certificates include:

  • Identification of network devices
  • Server-to-server authentication
  • Client-server authentication within a known trusted environment
  • Server-level signing of EPCS messages. They are also ideal for any systems that need to communicate with U.S. Federal Government systems.

As part of the application process, you will need to provide a Certificate Signing Request (CSR), aka PKCS#10. Visit our FAQ page for further technical information 

At the conclusion of the online registration process, you will be provided a forms packet for download that must be completed and returned to IdenTrust for certificate approval.

Device Identity Certificates for Medium Device Assurance

Secure your connected systems with trusted IoT device certificates that meet medium assurance standards for identity, encryption, and compliance.  
Choose the certificate that fits your deployment needs and get started with trusted device authentication.

Buy Now
  • About Internet of Trusted Things

    Explore the Internet of Trusted Things (IoTT)

    Learn how IoT device certificates enhance secure connectivity, protect data exchanges, and support trusted device identity across networks.

    Discover IoTT Benefits >>
  • IdenTrust Device Certificates

    Trusted IdenTrust Device Certificates

    Meet CA/Browser Forum and technical standards with IdenTrust’s medium assurance certificates—ideal for secure device authentication and encryption.

    Start Your Compliance Journey >>
  • Non-U.S. Device Certificates

    Global Device Certification Solutions

    Apply for device certificates from outside the U.S. with our globally recognized solutions, designed to meet international compliance requirements.

    Apply Internationally >>
  • Self-Service vs. SaaS Delivery

    Streamlined SaaS Certificate Provisioning

    Simplify deployment with our self-service SaaS model—perfect for scaling device identity across large networks with minimal overhead.

    Provision Smarter >>

Use Cases for Device Certificates

The connected world increasingly requires identity and authentication of devices. Depending on  the system, digital certificates for devices can be used to:

  • Ensure integrity of communication and data streams between devices
  • Protect the confidentiality of those data streams and the data stored in devices
  • Authenticate devices and servers in the field by providing trusted device mutual authentication
  • Facilitate device access control to allow for secure software updates to devices
  • Ensure device software integrity through code signing
  • Support static or dynamic credential provisioning
  • Authenticate to cloud video management services, providing signed content such as a video stream

Provide remote services around key management or rotation, software and application deployment and management of device date and information.

Auto Assembly Line in a factory

Frequently Asked Questions

1. What are IoT Device Security Certificates from IdenTrust?  

IoTT (Internet of Trusted Things) Device Security Certificates are X.509 digital certificates designed to authenticate and secure connected devices. These certificates help establish trusted identities for IoT devices, enabling secure communication, data integrity, and device-level encryption.

2. Why is device identity important in IoT environments?  

Device identity is critical for ensuring that only authorized devices can connect to a network or exchange data. IdenTrust IoT device certificates provide cryptographic assurance that a device is genuine, helping to prevent spoofing, unauthorized access, and man-in-the-middle attacks in IoT ecosystems.

3. What industries benefit from using IdenTrust IoTT certificates?  

Industries such as healthcare, manufacturing, energy, transportation, and smart cities rely on IoTT certificates to secure connected devices. These certificates are ideal for environments where device authentication, secure firmware updates, and encrypted communication are essential.

4. How do IdenTrust IoTT certificates support secure device onboarding?  

IdenTrust certificates can be embedded during manufacturing or provisioned during deployment to establish a unique, verifiable identity for each device. This enables secure onboarding into networks and cloud platforms, ensuring that only trusted devices are allowed to operate.

5. Are IdenTrust IoTT certificates compliant with industry standards?  

Yes. IdenTrust IoTT certificates are X.509 v3 compliant and issued under a publicly trusted root hierarchy. They meet the requirements for secure device identity and communication in accordance with industry best practices and regulatory frameworks.

6. Can IdenTrust IoTT certificates be used for mutual TLS (mTLS)?  

Absolutely. IdenTrust IoTT certificates support mutual TLS (mTLS), allowing both the client and server to authenticate each other during a secure connection. This is essential for protecting sensitive data and ensuring trusted communication between devices and cloud services.

7. How can I integrate IdenTrust certificates into my IoT platform or device ecosystem?  

IdenTrust offers flexible integration options, including API-based provisioning, bulk certificate issuance, and support for hardware security modules (HSMs) and secure elements. These options make it easy to embed trusted identities into devices at scale.