Chainloop

Chainloop is an open-source evidence store for software supply chain attestations, Software Bill of Materials (SBOMs), vulnerability reports (VEX), SARIF, CSAF files, QA reports, and more.

By integrating Chainloop with EJBCA and SignServer, you get an end-to-end solution that will create in-toto attestations signed with SignServer and EJBCA, stored in an OCI registry.

This allows you to:

Enhance Security:

Use Keyfactor’s SignServer for secure, widely adopted, enterprise-grade attestation signing.

Streamline Certificate Management:

Access EJBCA’s comprehensive certificate management system, which is trusted by enterprises worldwide.

Deploy fast:

Enjoy added trust and security with minimal setup, whether you’re using Chainloop Open Source or the Chainloop Platform.

Partnership Overview

Integrations

All

Keyfactor EJBCA

Local Signing of Attestations with Chainloop and EJBCA Ephemeral Certificates
With this integration, Chainloop can be configured to generate short-lived signing certificates by using EJBCA as the certificate authority (CA), enabling a user experience similar to Sigstore Fulcio’s “keyless” approach.

Resources:

Setup Guide

Keyfactor SignServer

Remote Signing of Attestations using Chainloop and SignServer
This integration allows users to send the attestation payload to a SignServer worker before sending it to Chainloop for storage.

Resources:

Setup Guide

EJBCA

Keyfactor EJBCA

Local Signing of Attestations with Chainloop and EJBCA Ephemeral Certificates
With this integration, Chainloop can be configured to generate short-lived signing certificates by using EJBCA as the certificate authority (CA), enabling a user experience similar to Sigstore Fulcio’s “keyless” approach.

Resources:

Setup Guide

SignServer

Keyfactor SignServer

Remote Signing of Attestations using Chainloop and SignServer
This integration allows users to send the attestation payload to a SignServer worker before sending it to Chainloop for storage.

Resources:

Setup Guide

Enterprise

Keyfactor EJBCA

Keyfactor Command

Keyfactor Command for IoT

Keyfactor Signum

Keyfactor SignServer

PQC Lab

Use Cases

PKI as a service

Certificate lifecycle automation

Fast and secure code signing

SSH key management

IoT identity management

Implementing cryptography

Explore Integration

Open Source

Keyfactor for Developers

EJBCA Community

SignServer Community

BouncyCastle Support

Keyfactor GitHub

Developer Community

PQC Lab

Explore integrations

IoT

PKI for IoT

Automotive

Medical

Telecom

Industrial IoT

Smart Home

Watch a Demo

Enterprise

Prevent Outages

Modernize PKI

Secure DevOps

Enable Zero Trust

Achieve Crypto-Agility

Explore Integrations

PQC Lab

Explore integrations

Company

About Keyfactor

Careers

Customers

Partners

Newsroom

Contact us

Latest News

Post-Quantum Interoperability in Action: How Collaboration is Shaping the PQC Future of Cyber Security

June 12, 2025

Resources

Case Studies

Data Sheets

Solution Briefs

White Papers

Reports

Watch a Demo

Blog

Events & Webinars

Education Center

Explore Integrations

See it in action

Explore integrations

Chainloop

Chainloop

Enhance Security:

Streamline Certificate Management:

Deploy fast:

Integrations

All

Keyfactor EJBCA

Keyfactor SignServer

EJBCA

Keyfactor EJBCA

SignServer

Keyfactor SignServer