EV charging trust: what PKI and device identity change for teams

TL;DR: EV charging infrastructure needs availability, interoperability, and digital trust, with PKI and ISO 15118-2 certificates enabling authenticated Plug & Charge connections between vehicles and chargers, according to DigiCert. For identity teams, the lesson is that device trust and lifecycle control matter as much in physical infrastructure as they do in NHI programmes.

NHIMG editorial — based on content published by DigiCert: The keys to unlocking secure, sustainable EV charging

By the numbers:

• Ohio broke ground on the first NEVI-funded EV charging station in October 2023, but 25 other states are poised to begin building stations of their own along nearly 80,000 miles of designated alternative fuel corridors.

Questions worth separating out

Q: How should organisations govern certificate-based device identity in connected infrastructure?

A: They should treat every certificate as a governed identity with an owner, lifecycle state, and revocation path.

Q: Why does interoperability increase identity risk in machine-to-machine environments?

A: Interoperability increases risk because multiple parties must agree on trust without sharing one admin domain.

Q: What breaks when machine identity is treated as an infrastructure detail?

A: What breaks is accountability.

Practitioner guidance

• Map charger identities as managed production identities Inventory every vehicle, charger, and backend certificate trust relationship, then assign clear ownership for issuance, renewal, and revocation across the full lifecycle.
• Define shared trust anchors before ecosystem expansion Set the root of trust, certificate policies, and validation rules before onboarding new manufacturers, roaming partners, or payment integrations.
• Treat interoperability as a governance requirement Test cross-vendor charging flows for authentication, certificate acceptance, and fallback behaviour, not just electrical compatibility and app usability.

What's in the full article

DigiCert's full blog covers the operational detail this post intentionally leaves for the source:

• How the unaffiliated root of trust is structured for EV certificate issuance and testing
• Details of ISO 15118-2 certificate deployment across charging and vehicle ecosystems
• The role of SAE International in developing cyber-secure charging PKI standards
• Examples of how Ford and EVgo tested the trust model in practice

👉 Read DigiCert's analysis of secure EV charging, PKI, and digital trust →

EV charging trust: what PKI and device identity change for teams?

Explore further

View Full Forum →  |  NHI Foundation Course →