certificates Archives - Help Net Security

certificates

3 areas of implicitly trusted infrastructure that can lead to supply chain compromises

May 13, 2021

The SolarWinds compromise in December 2020 and the ensuing investigation into their build services put a spotlight on supply chain attacks. This has generated a renewed …

Dispelling four myths about automating PKI certificate lifecycle management

May 6, 2021

The public key infrastructure (PKI) underpins the most effective strategy for securing communications between machines, network and mobile devices, virtual servers, and the …

Why certificate automation is no longer just “nice to have”

March 29, 2021

We’ve all heard the shocking stories about the outages at what should have been bullet-proof organizations like Microsoft, Spotify, and a California Covid-19 testing …

How to get affordable DV certificates for onion sites

March 26, 2021

The Tor Project, the nonprofit developers of the Tor network and Tor Browser, have announced two exciting developments for onion services: affordable DV certificates for v3 …

Fraudsters increasingly creative with names and addresses for phishing sites

November 12, 2020

COVID-19 continues to significantly embolden cybercriminals’ phishing and fraud efforts, according to research from F5 Labs. The report found that phishing incidents rose 220% …

Moving past the madness of manually updated X.509 certificates

November 2, 2020

Microsoft’s Active Directory (AD) is by far the most widely used enterprise repository for digital identities. Microsoft Active Directory Certificate Services (ADCS) is …

Reduced lifespan of TLS certificates could cause increase in outages

September 2, 2020

Beginning September 1st, all publicly trusted TLS certificates must have a lifespan of 398 days or less. According to security experts from Venafi, this latest change is …

Thousands of ISO certifications at risk of lapsing due to halted re-certification audits

August 20, 2020

Thousands of valuable ISO management system certifications earned by UK companies may now be at risk because auditors from Certification Bodies may not have been able to …

CIOs are apprehensive about interruptions due to expired machine identities

July 2, 2020

TLS certificates act as machine identities, safeguarding the flow of sensitive data to trusted machines. With the acceleration of digital transformation, the number of machine …

Modern crypto standards pave the way to stronger security

May 15, 2020

Cyberthreats are a ubiquitous concern for organizations operating in the digital world. No company is immune — even large and high-profile organizations like Adobe, Yahoo, …

10 considerations in order to ensure business continuity for PKI

April 10, 2020

Every year, enterprises face unforeseen events that can disrupt operations. These events are rarely predictable and often create significant challenges for IT and security …

Organizations still struggle to manage foundational security

March 19, 2020

Regulatory measures such as GDPR put focus on data privacy at design, tightening requirements and guiding IT security controls like Public Key Infrastructure (PKI). Continued …