PKI Blog

1024-bit RSAs Days are Numbered

Posted by Ted Shorter on Jul 9, 2013 6:49:48 AM

In December of 2011, the CA/Browser Forum, comprised of representatives from the major Certification Authorities such as Symantec, Comodo, GoDaddy, and DigiCert, as well as browser vendors such as Microsoft, Apple, Mozilla, and Opera, published a document called "Baseline Requirements for the Issuance and Management of Publicly Trusted Certificates.” This document outlines an agreed-upon set of minimum standards for SSL/TLS cert vendors.

One of these standards essentially calls of the elimination of certificates with 1024-bit RSA public keys by the end of 2013: any RSA-keyed certificate, even end-entity (“subscriber”) certificates, that expire after Dec. 31, 2013, must have a key of at least 2048-bits. This is big news in some circles; a number of public cert vendors have had to change their procedures, and, more significantly, start migrating their customer bases to 2048-bit certs. Many started this process quite a while ago.

Read More

Topics: digital certificate, RSA cert length, apple, Symantec, Public Key Infrastructure, Comodo, certificate 2013, RSA certificate length, Industry Trends, DigiCert, SSL certificate, 1024-bit RSA, PKI, TLS cert, Microsoft PKI, digital certificate length, Blog, 1024 certificate length, cert length 2013, GoDaddy, Mozilla

Got PKI? CSS at RSA

Posted by CSS Marketing on Mar 15, 2012 6:39:29 AM

Certified Security Solutions sent a team to the 2012 RSA Security Conference in San Francisco where one of the underlying themes was mobile security. Located in the Microsoft Pavilion, team CSS boasted a 'Got PKI?' theme centered around PKI best practices and the power of digital certificates on mobile devices. Booth conversations included PKI as a service in addition to leveraging CSS' own software solution, the Certificate Management System (CMS) for digital certificate management and enrollment in a Microsoft PKI. Visitors to the booth were genuinely excited to see a mobile security solution from a company that "gets" PKI. CSS' CTO, Ted Shorter, and Director of Business Development, Uri Lichtenfeld, presented a theater session titled 'Do's and Don’ts of PKI and Certificate Management for Mobile Devices.' Check out the photos below:

Read More

Topics: digital certificate, Fulfillment and governance tools for IAM, consumerization of IT, apple, iPhone, digital pki, digital certificate management, Public Key Infrastructure, Certificate Management System (CMS), mCMS, certificate remediation, Microsoft Public Key Infrastructure, iPad, Certificate Reporting Tool (CRT), PKI, Microsoft PKI, iOS management certificates, Microsoft-centric infrastructure, iOS, Blog, expanded compliance and forensic issues, mobile certificates, BYOD, Got PKI?

Apple Products Becoming (Business) Mainstream

Posted by CSS Marketing on Feb 9, 2012 4:00:13 AM

The popularity of Apple’s iPads and iPhones among consumers are well documented, but recent findings from Forrester Research shows that these devices are gaining steam in the corporate world.

The “Consumerization of IT” or BYOD (Bring Your Own Device) has become a common occurrence among all departments, and not surprisingly, Apple is leading the way among what Forrester calls “information” workers — workers that use a computer for work an hour or more per day. And the more senior the individual, the more they are using Apple devices:

  • More than 1 out of 5 (21%) of 10,000 surveyed Information workers use one or more Apple device at work
  • The number of Apple BYOD-ers doubles to 2 out of 5 professionals (41%) for those with the title “Director of IT” or higher
Read More

Topics: digital certificate, Microsoft Active Directory AD, certificates, apple, iOS 5, iPhone, IT Security, Microsoft Security Partner, digital pki, Certificate Reporting Tool, Public Key Infrastructure, Certificate Management System (CMS), Industry Trends, mCMS, Microsoft Public Key Infrastructure, Active Directory Certificate Services, iPad, PKI, Microsoft PKI, iOS management certificates, Microsoft and Apple, iOS, Blog, Active Directory, mobile certificates, BYOD, AD, Got PKI?

Apple Cozying Up to Microsoft Partners? CSS' mCMS

Posted by CSS Marketing on Nov 18, 2011 7:19:57 AM

This week we’ve seen the latest chapter in the Microsoft/Apple love/hate relationship… and it would seem that love is conquering all… at least for the time being. As CRN reports, Apple is reaching out to Microsoft partners that can help integrate iPhones and iPads into enterprise environments.

We’re seeing a bit of a perfect storm for Apple and Microsoft to work together – at least in the mobile space – as more and more organizations are taking a look at moving to or allowing iPhones (and iPads). Combining the robust multi-faceted Microsoft Core Infrastructure platform and Apple’s trendy “must-have” market monopolizing devices, Apple and Microsoft are “on again,” albeit in the relatively limited smartphone and tablet arena.

Read More

Topics: digital certificate, iPad security, apple, iOS 5, iPhone, IT Security, consumerization, Microsoft Security Partner, Certificate Reporting Tool, Certificate Management System (CMS), Industry Trends, mCMS, Software Products, Microsoft Public Key Infrastructure, iPad, SCEP, mobile security, Microsoft, Microsoft PKI, CRT, iOS management certificates, mobile certificate, Microsoft and Apple, iOS, Blog, iPhone security, secure enrollment, BYOD, Got PKI?

iOS 5, S/MIME, and Digital Certificate Management

Posted by Ted Shorter on Sep 15, 2011 9:50:12 AM

iOS 5, Apple’s new operating system for iPad, iPhone, and iPod Touch, will be released “soon” – Apple officially says “this Fall,” and many prognosticators are pointing to sometime in October. While the new release has hundreds of new features, the feature that’s of particular interest to digital identity practitioners such as CSS is one that’s received very little press to date:

S/MIME.

The current version of iOS4.x supports the use of digital certificates for authentication: to things like wireless networks, VPNs, and Microsoft ActiveSync . But starting with iOS 5, iPhone, iPad, and iPod Touch users will be able to send and receive digitally signed and encrypted email messages directly from their device.

Read More

Topics: digital certificate, consumerization of IT, apple, iOS 5, iPhone, IT Security, consumerization, Microsoft Security Partner, authentication, Certificate Reporting Tool, cert downtime, Certificate Management System (CMS), Industry Trends, mCMS, Software Products, Certificate revocation list, iPad, CRT, iOS management services, expired certs, mobile certificate, iOS, Blog, digital certificates expire, BYOD, expired digital certificates, Got PKI?

Using CSS’ Certificate Management System (CMS) to help manage certificates for iPads and iPhones

Posted by Ted Shorter on Apr 15, 2011 10:31:36 AM

Part 2 of Apple’s iOS Devices and Certificate Lifecycle Planning blog.

Read More

Topics: digital certificate, apple, iPhone, Microsoft Security Partner, Certificate Reporting Tool, Certificate Management System (CMS), mCMS, iPad, SCEP, CRT, iOS management certificates, mobile certificate, iOS, Blog, BYOD, Got PKI?

Apple's iOS Devices and Certificate Lifecycle Planning

Posted by Ted Shorter on Apr 14, 2011 3:20:42 PM

iOS devices such as iPads and iPhones are quickly becoming a part of the enterprise IT landscape, in a trend sometimes referred to as “the consumerization of IT.” From a security practitioner’s standpoint, there are a number of factors here that are cause for concern, including the prospect of unmanaged or “under-managed” devices accessing corporate data, the variety of devices and form factors involved, and the rapid pace of adoption, to name a few.

Enterprise Public Key Infrastructure (PKI) and digital certificates can help. iPhones and iPads are natively capable of using digital certificates for authentication to corporate networks and data in a variety of ways:

  • Corporate wireless networks (802.1X and EAP-TLS)
  • VPN gateways via the built-in Cisco client
  • Microsoft ActiveSync
  • Mutually-authenticated SSL web sites via the Safari browser
Read More

Topics: digital certificate, apple, iPhone, consumerization, Microsoft Security Partner, digital pki, Certificate Reporting Tool, Public Key Infrastructure, Certificate Management System (CMS), mCMS, Microsoft Public Key Infrastructure, iPad, iOS management certificates, mobile certificate, iOS, Blog, Simple Certificate Enrollment Protocol, BYOD, Got PKI?

(More) Smart Phones Rising: Motorola Announces Business Unit for the CIO

Posted by CSS Technical Team on Mar 31, 2011 2:54:14 PM

The Wall Street Journal Reported Monday that one more manufacturer of mobile phones is upping their game when it comes to going after the lucrative business market.

Read More

Topics: smartphone, apple, Microsoft Security Partner, Industry Trends, mobile security, motorola, blackberry

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?