Early Pilots, Specific Outcomes
Our early customers are IoT hardware teams who needed certificate infrastructure that fits into an embedded engineering workflow — not a 6-month PKI deployment managed by a dedicated security team. These are outcomes from working deployments.
Deployment Scenarios from the Field
Composite cases from early OEM, industrial, and automotive pilots. Identifying details withheld under pilot confidentiality — a standard convention in PKI and device security engagements.
Replacing shared factory credentials across a 12,000-unit shipped fleet
A manufacturer of industrial monitoring sensors had shipped 12,000 units with a shared PSK embedded in firmware. After a field exposure incident, they needed per-device identity without a factory re-flash. ErlySign's over-the-air provisioning API allowed them to issue individual device certificates via an OTA firmware update — no factory line rework.
Certificate lifecycle management for smart meter rollout
A smart metering company deploying DLMS/COSEM-authenticated meters needed a PKI system that could integrate with their existing provisioning toolchain. ErlySign's REST API allowed their provisioning software to issue certificates in the same call that configured device parameters — reducing provisioning time per device from 45 seconds to under 8 seconds.
ECU identity provisioning for pre-production vehicle program
An automotive Tier 1 supplier needed a certificate authority for ECU identity provisioning in a pre-production connected vehicle program. They required UN R155-aligned CSMS documentation for their OEM customer. ErlySign provided the CA infrastructure plus architecture documentation that could be included in their CSMS submission package.
Matter DAC/PAI hierarchy for smart home product line
A consumer IoT startup building Matter-certified smart home devices needed a Product Attestation Authority (PAA) delegation pathway and a DAC/PAI hierarchy managed at scale. ErlySign set up the PKI hierarchy and provided the certificate issuance API that their factory provisioning system calls during device flashing.
Engineering Feedback
"We evaluated two enterprise PKI vendors before ErlySign. Both required a 3-month onboarding and a dedicated PKI admin. ErlySign's C SDK had our first device issuing a certificate in under 4 hours. That's the difference between a tool for embedded teams and a tool for PKI teams."
"The automotive PKI landscape is complex — SCMS, pseudonym certs, V2X hierarchies. ErlySign's team understood the architecture before we explained it. They came with the right questions on the first call. That's rare for an early-stage product."
Ready to run a pilot?
100 devices. No cost. Your engineering team onboarded directly by ours.