The Hague, Netherlands: eMudhra highlighted the growing role of strong authentication and public key infrastructure (PKI) in helping organizations comply with Europe’s new cybersecurity regulations, including the NIS2 Directive and the Digital Operational Resilience Act (DORA) on Thursday.
The regulations significantly expand cybersecurity obligations for organizations operating in or serving the European Union, requiring stronger identity verification, supply chain security, risk management, and incident reporting controls. The mandates place increased responsibility on boards and executive leadership to ensure operational resilience and reduce cyber risk exposure.
eMudhra said identity-based attacks remain one of the largest enterprise vulnerabilities, with compromised credentials, unauthorized access, and weak authentication continuing to drive major security incidents. The company emphasized that cryptographic identity, certificate-based authentication, and lifecycle management of digital credentials provide a foundational control for securing enterprise attack surfaces.
PKI-based authentication enables organizations to establish trusted identities for users, devices, applications, and automated systems, ensuring only authorized entities can access critical infrastructure. According to eMudhra, this approach strengthens zero trust architectures, secures machine-to-machine communication, and improves visibility across distributed digital environments.
“Regulators are shifting cybersecurity accountability from technology teams to executive leadership,” said Carmine Auletta, Managing Director, eMudhra Europe. “Strong authentication and verifiable digital identity are no longer optional controls. They are becoming a core requirement for operational resilience and digital trust.”
eMudhra’s trust infrastructure supports certificate lifecycle management, identity assurance, secure device authentication, and post-quantum readiness designed to align with evolving regulatory frameworks across Europe and other global markets.
The company said the increasing regulatory focus reflects a broader shift toward securing digital infrastructure at scale, particularly as organizations expand cloud adoption, digital services, and autonomous systems.
