At Hannover Messe 2026 on the OPC Foundation booth, ECOS Technology unveils the ECOS TrustManagementAppliance (TMA), an integrated PKI and key management solution designed to automate the creation, distribution, and management of digital certificates and keys. Built for both traditional OT settings and IoT networks, it establishes robust machine identities as the foundation for secure industrial AI workflows. Seamless integration and scalability ensure consistent trust and compliance across heterogeneous infrastructures.
Table of Contents: What awaits you in this article
ECOS showcases TrustManagementAppliance automating PKI lifecycle at Hannover Messe
Gerald Richter, Geschäftsführer der ECOS Technology GmbH (Foto: ECOS Technology GmbH)
At Hannover Messe 2026 on the OPC Foundation stand in Hall 27, F60, ECOS Technology introduces its TrustManagementAppliance (TMA). This fully integrated PKI and key management solution automates every stage of the digital certificate lifecycle, from creation and distribution through renewal. By leveraging standards such as OPC UA, MQTT, HTTPS/TLS and ACME, the TMA secures smart devices, OT hardware and critical processes across both production environments and large-scale IoT networks.
TMA integrates OPC UA, GDS, protocols to secure communications
This appliance supports OPC Unified Architecture (OPC UA) and the Global Discovery Server (GDS), in addition to a variety of other protocols and interfaces. Companies can effortlessly incorporate it into their current IT and OT ecosystems, benefiting from recognized industry standards to ensure smooth interoperability. This approach secures data exchanges among interconnected devices and provides centralized access to certificate lifecycle functions, including issuance, renewal, and revocation, thereby optimizing operational reliability.
ECOS TMA, GDS enable automated OPC UA lifecycle management
By integrating Unified Automations OPC UA Global Discovery Server (GDS) with the ECOS TrustManagementAppliance, organizations orchestrate an automated lifecycle management framework for OPC UA endpoints. The GDS functions as a central authority for device discovery, enrollment and certificate issuance requests, while the TMA provides PKI and trust-management capabilities behind the scenes. Administrators can establish, enforce and audit security policies centrally, ensuring consistent authentication, authorization and secure communication flows across heterogeneous industrial environments.
Optional TMA Edge Gateway secures certificates amidst network interruptions
This optional TMA Edge Gateway extension addresses distributed manufacturing plants and locations with limited or unreliable network connections. As a compact software solution, it locally deploys, caches, and manages digital certificates on edge devices to maintain secure communication and authentication even during cloud outages. By storing keys and certificates on-site, the gateway ensures local continuity, synchronizes policies when connectivity resumes, and enforces centralized trust rules defined within the TMA system.
TMA Edge Gateway offline availability and automated certificate management
Deployable as a standalone appliance, virtual machine or app on edge gateways, the TMA Edge Gateway eliminates local administration and specialized IT expertise. It provides high availability, offline operation and automated certificate management in production environments. Compatibility extends beyond OPC UA and GDS to MQTT, HTTPS/TLS, SCEP, EST, ACME, CMP and REST APIs, enabling secure communication across diverse protocols. This solution ensures resilient identity management even under intermittent network conditions.
Digital Machine Identities Ensure Security Foundation for Industrial AI
Digital machine identities, also known as non-human identities, serve as the foundational security layer for Industrial AI and autonomous agent deployments. By issuing consistently structured, policy-aligned certificates, the TrustManagementAppliance establishes verifiable trust anchors across distributed systems. This automated certificate lifecycle ensures seamless authentication and authorization of devices and agents within heterogeneous OT and IoT environments. Organizations can confidently deploy AI-driven workflows, knowing every interaction adheres to strictly defined security policies.
ECOS Technologys TrustManagementAppliance and TMA Edge Gateway provide a scalable PKI and key management platform that integrates with OPC-UA ecosystems and heterogeneous IoT environments. Automating certificate issuance, distribution, and lifecycle management, it creates secure machine identities across devices and control systems. This solution enhances Industrial AI security by enabling reliable automated processes. It orchestrates end-to-end certificate governance from the cloud down to field devices, ensuring uniform policy application and continuous operational reliability.
