PKI Blog

Simplifying the Microsoft Policy Module with CMS Enterprise

Posted by Sami Van Vliet on Aug 15, 2017 12:46:02 PM

CMS Enterprise now provides exclusive, real time policy control at the Certificate Authority (CA), providing the most comprehensive security compliance for certificate issuance available today.

The CMS Custom Policy Modules intercept the certificate requests and can then perform important security-enhancing actions such as:

  • Allowing only certain IP addresses to request certificates. Preventing a user with access to the CA itself from being able to request a certificate outside of the approved CMS Enrollment process.
  • Using the CSS-patented VSCEP™ technology, CMS secures on-device key generation during certificate enrollment for iOS and Mac devices, without the use of client-side agents.
Read More

Topics: digital certificate management, X.509 digital certificates, Digital Identity Management, Microsoft Policy Module, PKI management

5 PKI New Year's Resolutions for 2017

Posted by CSS Technical Team on Dec 12, 2016 11:40:51 AM

CSS Presents PKI Promises for the Security of Next Year

Making 2017 Your Business’ Most Secure Year

2016 was an eventful year for cyber security, from beginning to end. While longstanding security problems remained challenging, many new methods of executing cybercrime emerged and affected businesses throughout all industries, and a number of high-impact attacks glared among headlines throughout the year. 

Read More

Topics: digital certificate management, PKI, Cyber Security

Policy, Implementation, Change and Problem Management for PKI

Posted by Andrew Prayner on Jun 8, 2015 8:48:30 AM

A Public Key Infrastructure (PKI) is a set of hardware, software, people, policies and procedures needed to create, manage, distribute, store and revoke digital certificates and manage public key encryption. It is often said (especially within the consultant community) that PKI implementations follow the 80/20 rule… 80% planning and 20% execution. This concept cannot be overstated. But it’s most often applied to those PKI specific, cryptography-related decision points such as namespaces, key lengths, signature hash algorithms and so forth. These are critical, to be sure… and difficult, if not impossible, to change after the fact. But equally important – especially in the medium to large enterprise space – are the non-technical, organizational aspects of PKI. This blog post will focus on the organizations within the enterprise that are PKI stakeholders, whether they know it or not, and their touch points that can be leveraged toward an optimal deployment, and thus ultimately an optimal ROI.

Read More

Topics: digital certificate management, Public Key Infrastructure (PKI)

DigiNotar---What Went Wrong?

Posted by CSS Technical Team on Jul 11, 2012 5:51:39 AM

Why PKI Procedures are so important to your business

Most people who are familiar with Public Key Infrastructure have been aware of the unfortunate events that happened to the Dutch Public CA DigiNotar. As a both a Dutch native and a PKI specialist, I took a particular interest in this event. At the time this occurred back in September 2011, I happened to be in The Netherlands, and was fortunate enough to be able to see and read things first hand.

Read More

Topics: digital certificate, IT Security, Microsoft Security Partner, digital pki, DigiNotar, digital certificate management, PKI key, Public Key Infrastructure, What is PKI, DigiNotar hack, Microsoft Public Key Infrastructure, hack, PKI, DigiNotar PKI, Blog

Got PKI? CSS at RSA

Posted by CSS Marketing on Mar 15, 2012 6:39:29 AM

Certified Security Solutions sent a team to the 2012 RSA Security Conference in San Francisco where one of the underlying themes was mobile security. Located in the Microsoft Pavilion, team CSS boasted a 'Got PKI?' theme centered around PKI best practices and the power of digital certificates on mobile devices. Booth conversations included PKI as a service in addition to leveraging CSS' own software solution, the Certificate Management System (CMS) for digital certificate management and enrollment in a Microsoft PKI. Visitors to the booth were genuinely excited to see a mobile security solution from a company that "gets" PKI. CSS' CTO, Ted Shorter, and Director of Business Development, Uri Lichtenfeld, presented a theater session titled 'Do's and Don’ts of PKI and Certificate Management for Mobile Devices.' Check out the photos below:

Read More

Topics: digital certificate, Fulfillment and governance tools for IAM, consumerization of IT, apple, iPhone, digital pki, digital certificate management, Public Key Infrastructure, Certificate Management System (CMS), mCMS, certificate remediation, Microsoft Public Key Infrastructure, iPad, Certificate Reporting Tool (CRT), PKI, Microsoft PKI, iOS management certificates, Microsoft-centric infrastructure, iOS, Blog, expanded compliance and forensic issues, mobile certificates, BYOD, Got PKI?

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?