Designed and implemented PKI infrastructure for a payment vendor, including Certificate Policy and Certification Practices Statements compliant with RFC 3647, EJBCA deployments on Linux, Windows Server 2012, and at AWS, using SafeNet and Thales HSMs. Developed and implemented key ceremony procedures for PCI PTS and PCI P2PE compliant certificate authorities. #PKI #PCI #security #integration #IoT

Developed the certificate authority architecture, policies, and practices to allow testing, distribution and deployment of third-party applications on payment terminals. Provided technical support for the implementation of EJBCA and SafeNet HSMs at Amazon Web Services. Developed policies and procedures for HSMs used to distribute customer encryption keys to payment terminals. Proposed the certificate authority architecture for a wholesale upgrade of cryptographic functions fo