Deutsche Telekom AG - Corporate PKI

The Corporate Public Key Infrastructure Next Generation of Deutsche Telekom AG is a Public Key Infrastructure (PKI) operated centrally in the Trust Center of Telekom Security for the generation and administration of different X.509v3 certificate types, which are used in particular for e-mail security, strong authentication (client-server), remote VPN, servers and active network components (e.g. routers, gateways).

With the cPKI, Telekom Security operates a complete PKI solution for Deutsche Telekom, whose infrastructure is installed in the highly secure Telekom Security Trust Center and operated by qualified personnel.

This PKI creates and manages certificates as an electronic identity for employees of the Deutsche Telekom Group. By using the functions provided by the PKI, every employee has the opportunity to authenticate himself reliably at electronic services and to communicate securely with other communication partners using signatures and encryption.

The main tasks of the cPKI are the Certification Authority (CA) processes for issuing, providing and managing certificates according to the X.509 standard. These processes ensure an integrated certificate management in the system infrastructure of Deutsche Telekom and the management of the key material (encryption key) for the interaction with IT systems and users. Under the cPKI itself, different intermediate-CAs are subsumed, which are also subordinate to hierarchically different root certification authorities.