Whitepapers
PKIS: End-to-End PKI Provisioning System
Learn about CommScope's End-to-End PKI Provisioning System with this informative whitepaper on PKIS. Gain insights into CommScope PKI Center capabilities and how it can support your organization's security needs.
Source Code Signing Whitepaper
This whitepaper describes the secure code signing system PRiSM (Permission Rights Signing Manager) operated by CommScope PKI Center
A Flexible and Scalable Architecture for Over-the-Air Credentials Provisioning
Technical paper on OPUS presented at SCTE Cable-Tec Expo 2020
Secure and Trusted Boot Architecture and Application for Access Networks
Secure and Trusted Boot Architecture and Application for Access Networks
Enhanced Digital Signature Service Using Split-key Signatures
SCTE Technical Journal Vol.1, No.3, December, 2021
AI on Both Sides of the Wire: Building Cryptographic Guardrails for Resilient Network Operations
This presentation explores how AI is changing both cyber defense and attack, creating machine-speed security challenges for modern network operations. It explains where trust breaks in AI-driven and agentic systems, why detection alone is insufficient, and how cryptographic guardrails—identity, integrity, provenance, attestation, and revocation—can enable trusted enforcement and resilient operations.
From Integrity to Trust: Rethinking Software Supply Chain Security
This presentation explains why software supply chain security must evolve beyond hashes, code signing, SBOMs, and compliance artifacts toward continuous, evidence-based trust. The slides cover where supply chain risks enter the SDLC, why integrity alone does not prove software is trustworthy, and how correlated trust signals—such as SBOMs, testing, vulnerabilities, provenance, and attestations—can support real operational decisions like deployment, blocking, runtime enforcement, and monitoring.
Hardening Credential Provisioning in the Supply Chain: A Multi-Layer PKI Architecture for Embedded Devices
Learn how a multi-layer PKI architecture can harden embedded device credential provisioning across the supply chain. This presentation explains why secure device identities matter, where cloning risks can occur, and how HSMs, layered encryption, authenticated factory interfaces, and device-side protections help prevent credential misuse and support trusted manufacturing.
Practical Framework for Transitioning to PQC: Balancing Security and Hardware Constraints
Presents a practical framework for transitioning to post-quantum cryptography, outlining why PQC adoption is urgent, key hardware and lifecycle constraints, and a phased three-stage approach that leverages existing symmetric cryptography to support secure boot, credential provisioning, and PQC-enabled applications.
Secure Boot and Key Management for Embedded Devices in the Post-Quantum Transition
This slide deck explains how embedded-device security can transition to post-quantum cryptography using an incremental, practical framework. It covers PQC adoption challenges, device lifecycle and hardware constraints, AES-based roots of trust, PQC credential provisioning, and a three-stage migration plan for secure boot, key management, and quantum-safe readiness.
Secure Boot and Key Management for Embedded Devices in the Post-Quantum Transition
Learn how post-quantum cryptography impacts secure boot and key management for embedded devices, including practical transition strategies that use existing hardware, symmetric cryptography, PKI services, and PQC-ready code signing to support secure firmware and device updates.
Secure Bootloader Signing Workflow for Arm®-Based Embedded Systems: Enabling Compliance and Integrity
Learn how secure bootloader signing protects Arm-based embedded systems, with practical guidance on HSM-backed key management, auditable signing workflows, CI/CD integration, and a TI AM6x case study for scalable, compliance-ready production.
Secure Firmware Update and Software Signing in Embedded Devices
This presentation provides a practical overview of how to secure firmware updates for embedded devices at scale. It covers the challenges of establishing a hardware root of trust, designing secure signing architectures, protecting signing keys, enforcing update verification, and maintaining security throughout a device’s lifecycle. The deck also shares lessons learned from real-world deployments, highlighting common signing and update system failures and best practices for building resilient, fleet-scale firmware update infrastructures.
Secured Device Credential Provisioning in IoT: A Joint Solution by CommScope and Infineon
This white paper introduces a joint CommScope–Infineon solution that provisions Infineon's OPTIGA™ Trust M secure element using CommScope's PKIWorks® platform.
Securing Device Credential Provisioning: Matter and the Wider IoT Ecosystem
This slide deck explains secure credential provisioning for Matter and IoT devices, covering manufacturing risks, device-generated keys, scalable certificate workflows, and a STM32WBA6 Matter DAC provisioning case study.
Trustworthiness-centric Software Supply Chain Security: Regulations, Requirements & Solutions
This slide deck covers software supply chain threats, emerging regulations, code signing fundamentals, CommScope’s PRiSM signing platform, and an integrated JFrog/CommScope solution for improving software integrity, key protection, and trustworthiness across CI/CD and distribution workflows.