Trustpoint

The trust anchor for mechanical engineering and manufacturing

Trustpoint supports organizations in the secure management of digital certificates in industrial environments.

Free & Open Source

Air-gapped Certificate Management
REST, CMP and EST support
Workflow automation
Docker container
HSM support

Easy operation.
Open standards.

Learn More

Value for Your Business

Device Manufacturers

Trustpoint can be integrated into devices, machines, or management platforms to provide built-in certificate and identity management. Manufacturers can offer a standards-based security foundation that supports onboarding, operation, service, and reuse across the full product lifecycle—without binding customers to proprietary or cloud-only infrastructures.

Embed certificate and identity management directly into your products

Offer secure onboarding as a built-in product capability

Extend existing device management solutions with standards-based PKI

Support secure operation across factory, field, and service phases

Reduce support cases caused by certificate failures or misconfiguration

Avoid vendor lock-in while remaining compatible with customer infrastructures

Institutional Context

The Trustpoint research project has been funded since September 2023 by the Federal Ministry of Research, Technology and Space.

Federal Ministry of Research, Technology and Space Logo

The goal of the project is the development of an open-source solution that ensures digital certificates are securely provided in industrial networks and managed throughout their entire lifecycle. Trustpoint helps companies verify trust chains. This way, machines and their components in factories can be secured more easily and effectively. The Trustpoint development team consists of medium-sized companies (achelos, asvin) with expertise in the security sector as well as research institutions and universities (Campus Schwarzwald, Hochschule Hamm-Lippstadt). The practical relevance to the user is ensured through close exchange with our associated partners ARBURG, Belden Inc., HOMAG, Keyfactor, Phoenix Contact, Schmalz, Siemens and Diebold Nixdorf.

Funded Partners

Campus Schwarzwald Logoachelos Logoasvin LogoHochschule Hamm-Lippstadt Logo

Associated Partners

ARBURG LogoBelden Inc. LogoHOMAG LogoKeyfactor LogoPhoenix Contact LogoSchmalz LogoSiemens LogoDiebold Nixdorf Logo

Success Stories

Network Infrastructure

Secure Onboarding - Belden Hirschmann

A Belden Hirschmann BOBCAT Switch is securely onboarded using its Initial Device Identifier (IDevID) for authentication. Trustpoint automates verification and issues domain-specific credentials.

Industrial Automation

OPC UA Certificate Management - PHOENIX CONTACT

A PHOENIX CONTACT PLCnext Technology device is securely provisioned with digital certificates using an OPC UA Global Discovery Server (GDS) and Trustpoint.

Industrial Control

EST Certificate Management - WAGO

A WAGO Compact Controller 100 integrates native certificate management using the EST protocol, allowing secure certificate enrollment and maintenance.