Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
Carillon Information Security Inc. is a cybersecurity vendor centered on PKI-based digital identity. It provides digital certificates, PIV-I credentials, managed PKI, trust-validation software, and PKI consulting. Its positioning is clearly geared toward aerospace, defense, government projects, airlines, and the MRO supply chain, covering vertical use cases such as Boeing Aviation ID, electronic authorized release certificates, and signature validation for aviation software parts.
Its protection capabilities mainly revolve around certificate-based identity authentication, multi-factor authentication, email signing and encryption, electronic document signing, certificate path validation, and software integrity verification. Products include Supply Chain Digital Credentials, PIV-I, Trust Validator, Pathfinder SCVP Server, LSAP Security Suite, e-ARC, and Certificate Discovery Service. Deployment options include managed PKI, servers, plugins, LDAP Proxy, Outlook plugins, and web-based solutions. It can integrate with PACS, LACS, portals, MRO platforms, document management systems, Radius, Siteminder, and CertiPath/FBPKI trust bridges.
Compliance is one of Carillon’s strengths. The source content explicitly mentions FIPS-201, PIV-I, CertiPath cross-certification, US Government Federal Bridge, NIST SP800-171/DFARS, PCI-DSS MFA, ATA Spec2000 Chapter 16, ATA Spec 42, and FAA/EASA/Transport Canada requirements related to electronic ARC. Its managed service includes private-label CAs, customizable CMS, and workflows for certificate issuance, recovery, revocation, storage, and status validation. However, the website does not show details on a centralized console, alerting policies, audit reports, or SLA terms.
Pricing is not publicly disclosed. The site only states that managed PKI can save up to 80% compared with building PKI in-house. Its strengths include deep experience in high-compliance scenarios, a complete PKI product chain, strong interoperability for aviation and government environments, and reduced complexity versus operating an internal CA. The downsides are that its information disclosure feels relatively traditional, with limited transparency around pricing, APIs, alerting, cloud-native experience, and service levels. For general security needs outside aviation and government, its fit should be assessed further.
It is better suited to airlines, MRO providers, aerospace and defense supply chains, state and local governments, and organizations participating in US government projects that require PIV-I or cross-domain trust. It does not look like a general-purpose MFA product aimed at SMBs. The source content does not provide information about access from China, so this remains unknown; payment methods are also not disclosed. For deployment in China, key points to verify include network reachability, contract payment options, certificate trust chains, local cryptography compliance, and available alternatives. Comparable providers include DigiCert, Entrust, GlobalSign, Keyfactor, Venafi, as well as domestic providers such as CFCA and Tianwei Integrity.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on carillonis.com official site.
carillonis.com is an Canada Security provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Limited (proxy recommended). Click "Visit Official Site" to reach carillonis.com directly.