SkyQon is an independent PKI and infrastructure security consultancy focused on the EMEA region, and also offers the managed SaaS product Cert Monitor. Its core focus is not traditional perimeter firewalls, but public key infrastructure, certificate lifecycle management, mTLS-based zero-trust access, and revocation control: from offline Root CA and online Issuing CA, to OCSP/CRL/AIA, as well as automated operations for components such as EJBCA, HAProxy, Vault, Salt, and Graylog.
In terms of protection scope, SkyQon mainly addresses issues such as certificate expiry, unknown issuance, weak algorithms, disorganized internal CA operations, and delayed invalidation of mTLS credentials. The demo workflow shown on its website can complete certificate issuance, access verification, revocation, OCSP propagation, and TLS-layer access denial within seconds. For deployment, PKI consulting can be implemented on the customerβs own infrastructure, with examples including Proxmox, EJBCA clusters, MariaDB Galera, HAProxy, Vault, Salt, and Graylog. Cert Monitor, meanwhile, is a closed-source managed SaaS and does not currently offer standard self-hosting. Management and alerts support Email, Slack, Teams, and PagerDuty, and the platform can generate NIS2 Article 21 evidence PDFs.
Cert Monitor has transparent pricing: the Free tier supports up to 5 domains; Starter is β¬39/month for up to 50 domains; Professional is β¬249/month for up to 100 domains; and Compliance is β¬499/month with unlimited domains. All plans are billed annually and exclude VAT. Pricing for PKI design, implementation, and enterprise customization is not publicly disclosed. SkyQon is suitable for mid-to-large organizations with CA teams, regulatory obligations such as NIS2, and needs around mTLS and certificate governance. Small teams can use Cert Monitor for public certificate monitoring.
Its strengths are detailed disclosure of the technology stack and a structured process covering audit, design, pilot, production rollout, and operations. It also combines CT monitoring, PQ readiness scoring, RLS-based multi-tenant isolation, and compliance evidence. The drawbacks are limited information about the companyβs location, customer references, SLA, payment methods, and support time zones. Cert Monitor only scans publicly reachable endpoints; internal CAs require an additional PKI Ops Dashboard. Self-hosting is not currently a standard option.
The available materials do not mention network connectivity from mainland China, RMB payments, or local invoice support, so China accessibility remains unknown. If an enterprise in China has strong compliance or localization requirements, it may compare SkyQon with Venafi, DigiCert, Keyfactor, Sectigo, EJBCA Enterprise, or build its own monitoring setup with tools such as cert-manager and Prometheus.
β This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on skyqon.com official site.
skyqon.com is an Unknown Cybersecurity provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach skyqon.com directly.