Netflix, Inc.
Systems and methods for encryption key management

Abstract:

A certificate orchestration system for digital certificate and encryption key management is provided herein along with associated methods. The system includes a certificate orchestration server having a processing device in communication with a coupled storage system that is coupled to the certificate orchestration server. The system further includes an interface provided by the certificate orchestration server to a client device; and a database to store digital certificates and keys. The certificate orchestration server is configured to receive a request from the client device to generate a public key, receive the public key from a third-party certificate authority system over an external network, store the public key in the coupled storage system. The coupled storage system is not directly connected to the client device.