PKI Blog

Efficient Digital Certificate Management with APIs

Posted by JD Kilgallin on Feb 23, 2018 10:47:23 AM

A good API makes the difference between a software application and a software platform. Without an API, a software product is a special-purpose tool for a pre-defined set of specific operations. With a good API, though, it can become a powerful, modular platform with capabilities that go well beyond what its developers originally imagined. Tasks that otherwise require thousands of clicks and keystrokes can be reduced to a single keystroke to launch a script. And business processes that require multiple software applications can be seamlessly integrated so that the end users don't even have to know what software is being used. This is all true of CMS, and with the launch of CMS 5.0 and the CMS PowerShell SDK, the API-based capabilities of CMS are more powerful than ever and easier to use!

Read More

Topics: digital certificate management, PowerShell, API, PowerShell SDK, efficient certificate management

Leveraging Existing Technology for Flexible and Extensible Certificate Reporting

Posted by Jack Palivoda on Feb 16, 2018 3:40:58 PM

Reporting requests can go on forever, and most software provides the ability to create and deliver reports via an integrated reporting tool. While making reporting easy for third-party vendors, usually this limits customer flexibility to extend reporting to meet specific business needs. These new reports require new investments.

Read More

Topics: Certificate Reporting Tool, PKI, Certificate Management System, Microsoft SQL Server, SQL Server Report Server

A New Look for the Release of CMS 5.0

Posted by Sarah Jaconski on Feb 13, 2018 4:10:59 PM

With CMS 5.0, modernizing the user interface (UI) and improving the user experience was a top priority. The UI pre-5.0 was effective, however CSS has grown as a company and product since, and our UI now reflects our growth in this recent release. As a developer at CSS, I had the responsibility to design the new UI for CMS 5.0, and I am excited to share all the benefits the new UI will bring to our clients.

 

Read More

Topics: Certificate Management System (CMS), User Interface

2018 Predictions for the Internet of Things (IoT)

Posted by Anthony Ricci on Jan 5, 2018 11:32:34 AM

As with any new year, there are with plenty of expectations and predictions.  There is nothing different about this year.  Especially as it relates to the Internet of Things (IoT). With over 20 billion current “connected” devices and an expected 6 trillion dollars by 2020, there are not a “lack” of predictions.  Even less surprising are the security concerns surrounding these devices.  With every new device that is activated, security exposure becomes exponentially greater.

Read More

Topics: IoT, Internet of Things (IoT), IoT Security

PKI and HSMs: 'Kernel memory leaking' Intel processor design flaw

Posted by Rex Wheeler on Jan 3, 2018 9:28:16 PM

At CSS we are all about helping our customers manage their Public Key Infrastructure (PKI). We always recommend that customers store their important private keys using Hardware Security Modules (HSMs) because without an HSM it is hard to protect your keys from malware or misconfigured security in your operating system. It turns out there is another good reason that due to extreme rarity is not considered often: CPU flaws.

Read More

Topics: PKI HSM, HSM, Intel, Kernel memory leaking

THE CIRCLE OF TRUST FOR CONNECTED DEVICES

Posted by Anthony Ricci on Dec 7, 2017 9:39:19 AM

When it comes to connected devices, how big should your "Circle of Trust" be?  Who should you trust, and why?

As told by Jack Byrnes ("Meet the Parents"), who should you trust and why?

Read More

Topics: Public Key Infrastructure, PKI, Internet of Things (IoT), Root of Trust, ThingWorx, LiveWorx, Connected Devices

On-Prem or Cloud Managed Public Key Infrastructure (PKI)? Fastest Way to Mitigate Risk and Lower Costs

Posted by Jonathan Ossovicki on Oct 26, 2017 10:31:28 PM

Do You Really Need an On-Prem Public Key Infrastructure (PKI) for Better Security?

While conventional wisdom of those who don't trust the cloud has been that on premises is more secure, the important reality is that on premises is only more secure if you have the expertise and you are willing to allocate your experts' time to its appropriate management.  

Gone are the days of questionable cloud security, as service providers are making strides to provide a more agile and pain free move - especially in the realm of public key infrastructure (PKI).  With a recent Right Scale report, a “multi-cloud” or “hybrid” approach increased 3% in 2016, sitting at current 85% of enterprises using a multi-cloud strategy. But, is keeping your PKI and its overall lifecycle management on premise really a much safer bet? I’m going to dive deep on reasons why migrating to a cloud-based PKI managed service model may mitigate more risk, increase efficiency and lower operating costs.

Read More

Topics: Managed PKI, managed public key infrastructure, cloud-based managed public key infrastructure

The Hidden ROI with Certificate Lifecycle & PKI Management

Posted by Michael Thomas on Oct 25, 2017 8:50:36 AM

 

There are always questions in regard to why an organization should care about their digital certificate lifecycle management (CLM) with their existing public key infrastructure (PKI).  Our sales team constantly hears the same rebuttals: “We try to keep things very simple and agile when it comes to certificates” or “we just don’t see a need to give it more time than what we currently do”, and on the surface their logic seems sound.  More, cost estimates of a CLM system seem to financially justify their statements, but in taking a closer look, these IT leaders may be unintentionally excluding certain facts that prove their conclusions to be flawed or even false.

Read More

Topics: digital certificate management, Public Key Infrastructure, ROI PKI, ROI public key infrastructure

SCARIER THINGS: Protect Your IoT Assets with HSMs

Posted by Anthony Ricci on Oct 11, 2017 11:47:25 AM

Although Halloween happens once a year, evil lurks in the digital IoT world all year round.  Systems must be protected 24/7/365 to ensure that the ‘Demogorgon’ does not make it’s way through the portal into the system.  One concern is the protection of our cryptographic keys.  Although there are many ways to accomplish this, it is not an easy decision.

Read More

Topics: Public Key Infrastructure, PKI, Hardware Security Module, IoT, Internet of Things (IoT), HSM, LiveWorx

Who’s Watching Your Public Key Infrastructure (PKI)?

Posted by Andrew Prayner on Oct 6, 2017 10:28:43 AM

If you're not watching your PKI...who is?

 As ominous as the title sounds, this blog will actually focus on the parties that should have eyes on your public key infrastructure (PKI), rather than the “bad actors” who shouldn’t.  The latter is no less important, however, and that could easily be the topic of a future blog.

Read More

Topics: Managed PKI, Public Key Infrastructure, PKI, DIY PKI

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?