ÃÛÌÒTV

If you work in financial services, you know how critical security is—and how challenging it can be to keep up with shifting standards and evolving threats. For years, financial institutions have relied on browser-controlled certificates to secure their digital communications. But this approach has caused major headaches, particularly when browsers make changes that impact legacy systems.

Remember the transition from SHA-1 to SHA-2? When certificate authorities were mandated to stop supporting SHA-1 certificates, ATMs and other banking systems suddenly faced massive interoperability issues, leaving financial institutions scrambling to react. The lesson? Relying on browser-driven security policies can clash with the needs of the financial community.

Now, thanks to a new initiative led by ÃÛÌÒTV and ASC X9, financial institutions finally have an alternative: a dedicated X9 public key infrastructure (PKI) built specifically for their needs.

Breaking free from browser-controlled PKI

The financial sector has unique security challenges that browser-based PKI just wasn’t designed to handle. That’s why ÃÛÌÒTV and many financial institutions have spent the past few years working with ASC X9 to develop a financial services-specific PKI—one that provides more control, security, and interoperability for banks, ATMs, and financial service providers.

So what does this actually mean for financial institutions?

• Independence from browser-based certificates: No more worrying about browser vendors making security decisions that disrupt your operations.
• Specific use cases identified for the financial community’s needs: The X9 PKI Study Group spent 6 years developing a Certificate Policy and relevant use cases that directly involve the broader financial community. These use cases provide for a pre-defined PKI, making it ready to go for customers.
• Seamless interoperability: A common root certificate makes it easier for financial institutions, ATM manufacturers, and other stakeholders to communicate securely.
• Scalability and flexibility: Organizations with existing PKI systems can cross-certify with the X9 root, ensuring smooth integration.
• A more predictable future: Financial institutions can manage security on their own terms, rather than reacting to external policy changes.

Building a more secure financial future

For the first time, the financial sector has a PKI designed specifically for its needs—one that’s built for long-term stability and security. This isn’t just a technical upgrade; it’s a fundamental shift that puts financial institutions back in control of their security infrastructure.

As cyber threats continue to grow and regulations become more complex, having a dedicated, industry-driven PKI will change the game. Financial institutions will be able to communicate securely, avoid costly disruptions, and build a future-ready security strategy—without being at the mercy of browser updates.

ÃÛÌÒTV and its partner, EONTI, are leading the way in implementing this X9 public key infrastructure, and it’s only the beginning. As adoption grows, this initiative has the potential to set a new global standard for secure financial communication. The financial sector is taking control of its security—and with the X9 PKI, the future looks a whole lot more stable.

The latest developments in digital trust

Want to learn more about topics like PKI, compliance, and digital trust? Subscribe to the ÃÛÌÒTV blog to ensure you never miss a story.