Gapfruit is proud to announce a new strategic collaboration with DigiCert, the world’s leading provider of PKI and digital trust solutions. This partnership strengthens Gapfruit’s mission to bring secure-by-design device manufacturing to OEMs worldwide. It supports the rapid adoption of hardware-rooted Birth Certificates as the new foundation for trustworthy connected devices.
The collaboration builds on DigiCert’s globally deployed PKI infrastructure and expertise in high-assurance certificate services, combined with Gapfruit’s innovative, production-ready Birth Certificate Provisioning Service, which allows OEMs to embed a cryptographically verifiable origin into each device during manufacturing.

This aligns with internationally recognized Trusted Computing Group (TCG) specifications and reinforces best practices highlighted in Gapfruit’s identity provisioning framework.

Raising the Bar for CRA Readiness and Device Integrity

With the upcoming Cyber Resilience Act (CRA) and increasing global regulatory pressure for provable device authenticity, OEMs are seeking scalable, compliant solutions. The partnership ensures that manufacturers can rely on:

• High-assurance certificate issuance for device identities
• Hardware-rooted trust anchors backed by global PKI standards
• Legally defensible proof of device origin and integrity
• Protection against counterfeits, liability risks, and forced recalls

By using DigiCert’s trust infrastructure, Gapfruit enables OEMs to deploy Birth Certificates at industrial scale, reducing operational complexity and eliminating the need to build their own secure PKI, lifecycle management, or auditing capabilities — investments that would otherwise require substantial financial resources and deep cryptographic expertise.

A Turnkey Trust Architecture for Modern IoT and Industrial Systems

As modern cloud ecosystems — including Azure IoT Hub and AWS IoT Core — rely on certificate-based authentication, the combination of Gapfruit’s provisioning technology and DigiCert’s PKI backbone ensures seamless onboarding and lifecycle verification for connected devices.
The joint solution empowers manufacturers to:

• Integrate device identities within seconds during production, using existing equipment
• Scale globally without modifying manufacturing lines
• Meet future regulatory and security requirements with confidence
• Strengthen their market position in safety- and security-critical industries

Gapfruit’s role as a Contributor Member of the Trusted Computing Group (TCG) further reinforces its commitment to shaping future standards for secure device manufacturing and identity provisioning.

‍