PKI Blog

5 Risks of Gambling With a Wild Certificate Count and PKI

Posted by CSS Technical Team on Jun 4, 2018 3:42:44 PM

Gambling means being prepared to lose everything. When working with an out of control, unmanaged digital certificate count and public key infrastructure (PKI), the risks of facing issues with financial and productivity losses are extremely high. Are you prepared to gamble with some of your most valuable IT assets? Let's explore five common unmanaged certificate and PKI related scenarios, their financial implications and how to prevent them from occurring in your enterprise.

Read More

Topics: Digital Identity Management, digital certificates, ROI public key infrastructure

Infographic: 2016 PKI and IoT Security Predictions

Posted by CSS Technical Team on Aug 1, 2016 3:59:21 PM

In 2016 digital identity cyber crimes have grown exponentially. As businesses continue to brace against cyber adversaries and look to secure the Internet of Things (IoT), Public Key Infrastructure (PKI) is continuing to prove that it is an economical and reliable technology that delivers a secure and high-performance solution. Check out the infographic then the full blog to learn more about why each prediction was made and what it means to your business.

Read More

Topics: digital certificates, PKI, Public Key Infrastructure (PKI), cybersecurity

Infographic: Digital Certificates and Cyber Security Stats

Posted by CSS Technical Team on Jun 21, 2016 3:39:55 PM

In 2016 CSS Research surveyed information security professionals on their current and anticipated digital certificate usage related to enterprise and Internet of Things (IoT) use cases. This infographic outlines key findings from the survey proving the importance of proper Public Key Infrastructure (PKI) and digital certificate usage and management in the fight against cyber crime.

Read More

Topics: cybersecurity, PKI, Public Key Infrastructure (PKI), digital certificates

The Importance of Managing Digital Identities

Posted by CSS Technical Team on May 11, 2016 9:22:58 AM

Digital identity management (DIM) is the process for managing and securing digital identities through authentication, encryption, and signing. The end goal is to protect your organization’s reputation by preventing breach and/or downtime by accurately authenticating and authorizing an endpoint, transaction, or data. In essence solid digital identity management always comes back to the security of the same things: people, data, devices and applications.

Read More

Topics: digital certificates, digital identity, multifactor authentication, data breach

Giving the Internet an Identity: How to Manage Digital Identities

Posted by CSS Technical Team on Feb 19, 2016 12:11:59 PM


If your organization is managing a significant volume of digital certificates (over 100), and expects continued rapid growth, your security team should consider an automated certificate lifecycle management solution.

When facing the responsibility to ensure the health, validity, and expiration dates of a large number of digital certificates, using an Excel spreadsheet is not a scalable or smart option. Letting just one certificate expire can be catastrophic. Having access to a solution that catalogs and monitors each certificate, alerts your team of expirations or issues, and assists in automating the re-issuance of revocation of certificates for the given data, device or application adds a layer of assurance to your security posture as well as satisfies an audit/compliance requirement.

Read More

Topics: digital certificates, Digital Identity Management, PKI for IoT

Authentication in an Ultra-Connected World: Internet of Things

Posted by Ted Shorter on Oct 1, 2015 6:05:00 AM

As PKI practitioners, we’ve been asked the question for years: “What’s the best way to get a digital certificate on _____?” What gets filled into the blank has expanded dramatically over time, however. Ten years ago, certificates landed primarily on what I’d describe as “traditional” IT infrastructure – servers, desktops, laptops, smart cards, RADIUS servers, or VPN concentrators. But since then, things have gotten much more interesting. Handheld scanners. Surgical robots. VOIP phones. Set-top boxes. Cable modems. Even heart monitors and IV pumps.

Read More

Topics: install certificates onto devices, digital certificates, cert, embedded systems, certificate, Microsoft Security Partner, expired digital certificate, Public Key Infrastructure, Certificate Management System (CMS), Industry Trends, Microsoft Public Key Infrastructure, Cisco Internet of Things, embedded certificates, embedded devices, Microsoft PKI, X.509 digital certificates, Internet of Things, IoT, Blog, Internet of Things (IoT), certificate install, BYOD, PKI Assurance

Microsoft Security Update: Digital Certificate Key Length Minimum 1,024 Bits

Posted by CSS Technical Team on Sep 11, 2012 7:00:00 AM

Microsoft security update to block access to digital certificates that have a key length of less than 1,024 bits on 10/9/12

Read More

Topics: digital certificates, Microsoft Security Partner, Public Key Infrastructure, Industry Trends, Microsoft Public Key Infrastructure, RSA Digital Certificate, PKI, Microsoft Security Advisory (2661254), digital certificate length, Blog, 1024 certificate length


Posted by CSS Technical Team on Jun 28, 2012 7:22:00 AM

Vulnerability Note VU#971035- Simple Certificate Enrollment Protocol (SCEP) does not strongly authenticate certificate requests

CLEVELAND, OH – June 28, 2012. Researchers at Certified Security Solutions, Inc. (CSS), a leading information security company, have uncovered a potentially serious security issue pertaining to the use of the Simple Certificate Enrollment Protocol (SCEP) in conjunction with mobile devices. Organizations that leverage SCEP to issue digital certificates to mobile devices may be subject to a privilege escalation attack.

Read More

Topics: digital certificates, MDM, SCEP, US-CERT, Press Releases, Simple Certificate Enrollment Protocol, privilege escalation attack, BYOD

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?