Case Study: Fujitsu achieves Microsoft CA root key protection with Thales Data Protection On Demand

Fujitsu New Managed Service Uses Thales Data Protection On Demand to Secure Microsoft Certificate Authority

Fujitsu, the world’s seventh-largest IT services provider, needed to strengthen PKI for customers using Microsoft Certificate Authority—most urgently for a European pharmaceutical client facing strict data protection, privacy and audit requirements. To mitigate the risk that compromised root signing keys would undermine entire PKIs, Fujitsu partnered with Thales and adopted Thales Data Protection On Demand (DPoD) — specifically HSM On Demand for Microsoft ADCS — as part of its managed Microsoft CA offering.

Thales delivered cloud HSMs that enforce hardened boundaries around Microsoft Root CA signing keys, providing automated key management, high availability and redundancy (99.95% SLA), zero upfront CAPEX and flexible usage-based pricing. The Thales DPoD deployment let Fujitsu productize a fully managed PKI service that improved regulatory compliance and PHI protection for the pharma customer, reduced operational complexity, and created clear upsell opportunities for additional DPoD and Thales Luna HSM offerings across Fujitsu’s European managed services.

Fujitsu

Petri Heinala

Security Offerings Architect