Schaeffler Group Key Server
Email communication: secure and confidential

In order to ensure the security of email communication based on PGP and X.509 keys, the Schaeffler Group has established a certification infrastructure (Public Key Infrastructure PKI).

The two processes are distinguished by the way in which the accuracy and authenticity (or certification) of a public key are documented.

Within PGP, users form what is called a "web of trust" that allows known, trustworthy third parties to confirm the authenticity of a public key. To document the authenticity of its employees' public keys, the Schaeffler Group has signed them using its private PGP key. Please use the Schaeffler Group’s public PGP root key to verify this signature.

X.509 is a system that includes strict structural specifications and specifies that centralized authorities must confirm a public key. Organizations like the Schaeffler Group can operate in-house certification authorities (CA) to verify their own employees. To obtain this confirmation, please download the Schaeffler Group’s root certificates. In addition, you can access the Schaeffler Group’s certificate revocation lists (CRL's) to verify the expiration of the validity period for our public X.509 keys.