certificates Archives - Help Net Security

certificates

CIOs are apprehensive about interruptions due to expired machine identities

July 2, 2020

TLS certificates act as machine identities, safeguarding the flow of sensitive data to trusted machines. With the acceleration of digital transformation, the number of machine …

Modern crypto standards pave the way to stronger security

May 15, 2020

Cyberthreats are a ubiquitous concern for organizations operating in the digital world. No company is immune — even large and high-profile organizations like Adobe, Yahoo, …

10 considerations in order to ensure business continuity for PKI

April 10, 2020

Every year, enterprises face unforeseen events that can disrupt operations. These events are rarely predictable and often create significant challenges for IT and security …

Organizations still struggle to manage foundational security

March 19, 2020

Regulatory measures such as GDPR put focus on data privacy at design, tightening requirements and guiding IT security controls like Public Key Infrastructure (PKI). Continued …

Fake alerts about outdated security certificates lead to malware

March 5, 2020

Cyber criminals have been trying out a new approach for delivering malware: fake alerts about outdated security certificates, complete with an “Install …

Let’s Encrypt will revoke 3m+ TLS/SSL certificates

March 4, 2020

Starting with 20:00 UTC (3:00pm US EST), today (March 4), the non-profit certificate authority Let’s Encrypt will begin it’s effort to revoke a little over 3 …

Only 54% of security pros have a written policy on length and randomness for keys for machine identities

December 27, 2019

People rely on usernames and passwords to identify themselves to machines so they can gain access to data and services. Machines also need to authenticate themselves to each …

Most DevOps pros feel proper certificate issuance policies slow them down

December 16, 2019

75% of DevOps professionals are concerned that policies for issuing certificates slow down development, and over a third (39%) believe developers should be able to circumvent …

Trusted certificates make phishing websites appear valid

November 18, 2019

There has been a rampant growth of look-alike domains, which are often used to steal sensitive data from online shoppers. Venafi analyzed suspicious domains targeting 20 major …

The promise and peril of post quantum computing

November 7, 2019

In this Help Net Security podcast, Avesta Hojjati, Head of R&D at DigiCert, talks about the security implications of post quantum computing. Here’s a transcript of the …

How seriously are businesses taking their PKI security?

October 16, 2019

While most enterprises demonstrate a committed effort towards maintaining a well-rounded PKI setup, they still fall short in several key categories. The post-Black Hat survey …

Analysis reveals the most common causes behind mis-issued SSL/TLS certificates

October 14, 2019

We should be able to trust public key certificates, but this is the real world: mistakes and “mistakes” happen. Researchers from Indiana University Bloomington …