PKI Blog

AirWatch & CSS - Partnership Featuring Certificate Management System

Posted by Sarah Hance on Sep 24, 2013 11:58:24 AM

Cleveland, OH - September 24, 2013 - Certified Security Solutions' Certificate Management System (CMS) is featured in the AirWatch Marketplace as a fully integrated mobile certificate solution. Developed to give AirWatch customers and partners a centralized location to identify technologies that complement their investments in AirWatch and additional mobile avenues, the AirWatch Marketplace is reserved for top solution providers with proven integration benefits.

Read More

Topics: digital certificate, digital pki, Public Key Infrastructure, issue mobile certificate, AirWatch, PKI, cert management, Microsoft PKI, mobile certificate, certificate management, Internet of Things, expired certificate, AirWatch marketplace, Press Releases, BYOD

Writing Event Plugin Handlers for the Certificate Management System (CMS)

Posted by Gary Galehouse on Jul 25, 2012 5:15:44 AM

The Certificate Management System (CMS), formerly known as the Certificate Reporting Tool (CRT), as referenced below, provides reporting and notification capabilities to an existing Public Key Infrastructure (PKI). The reports and notifications are highly customizable for content, timing, and audience. In addition, custom ‘event plugin handlers’ can be created and registered to perform any desired functionality when predefined events occur. Two types of CRT events are exposed:

Read More

Topics: digital certificate, iPhone, IT Security, Microsoft Security Partner, digital pki, Certificate Reporting Tool, Public Key Infrastructure, Event Plugin Handlers, Microsoft Public Key Infrastructure, iPad, Microsoft PKI, iOS management certificates, mobile certificate, iOS, Blog, Plugin Handlers, Got PKI?

Security Vulnerability- The Use of the Simple Certificate Enrollment Protocol (SCEP) and Untrusted Devices

Posted by Ted Shorter on Jun 27, 2012 11:19:38 AM

It’s been in the works for quite some time, but we are finally able to publicly announce a problem that we’ve encountered, related to the use of the Simple Certificate Enrollment Protocol, or SCEP, in conjunction with mobile devices. We’ve been working for months behind the scenes with the folks at the United States Computer Emergency Readiness Team (US-CERT) and CERT/CC at Carnegie Mellon our customers, and a number of vendors as well, to help raise awareness of the issue. The CERT report can be found here, and we have a whitepaper and video overview on our website to provide more information.

It should be noted that not all MDM usage of SCEP is equally vulnerable. The scenarios that cause the most concern to us are those that involve the use of SCEP to issue authentication certificates to enterprise systems such as ActiveSync, WiFi, and VPN. In some cases it may be possible to use alternative configurations that reduce or eliminate these risks; in others, it may be more difficult. CSS is willing to help customers assess their specific usage of SCEP and PKI to determine their degree of exposure.

Read More

Topics: digital certificate, consumerization of IT, IT Security, Microsoft Security Partner, Mobile Device Management, bring your own device, Public Key Infrastructure, Certificate Management System (CMS), Industry Trends, mCMS, MDM, SCEP, Certificate Reporting Tool (CRT), PKI, certification and remediation, mobile certificate, Microsoft-centric infrastructure, Blog, Simple Certificate Enrollment Protocol, CERT Coordination Center, BYOD, ActiveSync, Got PKI?

Apple Cozying Up to Microsoft Partners? CSS' mCMS

Posted by CSS Marketing on Nov 18, 2011 7:19:57 AM

This week we’ve seen the latest chapter in the Microsoft/Apple love/hate relationship… and it would seem that love is conquering all… at least for the time being. As CRN reports, Apple is reaching out to Microsoft partners that can help integrate iPhones and iPads into enterprise environments.

We’re seeing a bit of a perfect storm for Apple and Microsoft to work together – at least in the mobile space – as more and more organizations are taking a look at moving to or allowing iPhones (and iPads). Combining the robust multi-faceted Microsoft Core Infrastructure platform and Apple’s trendy “must-have” market monopolizing devices, Apple and Microsoft are “on again,” albeit in the relatively limited smartphone and tablet arena.

Read More

Topics: digital certificate, iPad security, apple, iOS 5, iPhone, IT Security, consumerization, Microsoft Security Partner, Certificate Reporting Tool, Certificate Management System (CMS), Industry Trends, mCMS, Software Products, Microsoft Public Key Infrastructure, iPad, SCEP, mobile security, Microsoft, Microsoft PKI, CRT, iOS management certificates, mobile certificate, Microsoft and Apple, iOS, Blog, iPhone security, secure enrollment, BYOD, Got PKI?

iOS 5, S/MIME, and Digital Certificate Management

Posted by Ted Shorter on Sep 15, 2011 9:50:12 AM

iOS 5, Apple’s new operating system for iPad, iPhone, and iPod Touch, will be released “soon” – Apple officially says “this Fall,” and many prognosticators are pointing to sometime in October. While the new release has hundreds of new features, the feature that’s of particular interest to digital identity practitioners such as CSS is one that’s received very little press to date:

S/MIME.

The current version of iOS4.x supports the use of digital certificates for authentication: to things like wireless networks, VPNs, and Microsoft ActiveSync . But starting with iOS 5, iPhone, iPad, and iPod Touch users will be able to send and receive digitally signed and encrypted email messages directly from their device.

Read More

Topics: digital certificate, consumerization of IT, apple, iOS 5, iPhone, IT Security, consumerization, Microsoft Security Partner, authentication, Certificate Reporting Tool, cert downtime, Certificate Management System (CMS), Industry Trends, mCMS, Software Products, Certificate revocation list, iPad, CRT, iOS management services, expired certs, mobile certificate, iOS, Blog, digital certificates expire, BYOD, expired digital certificates, Got PKI?

Using CSS’ Certificate Management System (CMS) to help manage certificates for iPads and iPhones

Posted by Ted Shorter on Apr 15, 2011 10:31:36 AM

Part 2 of Apple’s iOS Devices and Certificate Lifecycle Planning blog.

Read More

Topics: digital certificate, apple, iPhone, Microsoft Security Partner, Certificate Reporting Tool, Certificate Management System (CMS), mCMS, iPad, SCEP, CRT, iOS management certificates, mobile certificate, iOS, Blog, BYOD, Got PKI?

Apple's iOS Devices and Certificate Lifecycle Planning

Posted by Ted Shorter on Apr 14, 2011 3:20:42 PM

iOS devices such as iPads and iPhones are quickly becoming a part of the enterprise IT landscape, in a trend sometimes referred to as “the consumerization of IT.” From a security practitioner’s standpoint, there are a number of factors here that are cause for concern, including the prospect of unmanaged or “under-managed” devices accessing corporate data, the variety of devices and form factors involved, and the rapid pace of adoption, to name a few.

Enterprise Public Key Infrastructure (PKI) and digital certificates can help. iPhones and iPads are natively capable of using digital certificates for authentication to corporate networks and data in a variety of ways:

  • Corporate wireless networks (802.1X and EAP-TLS)
  • VPN gateways via the built-in Cisco client
  • Microsoft ActiveSync
  • Mutually-authenticated SSL web sites via the Safari browser
Read More

Topics: digital certificate, apple, iPhone, consumerization, Microsoft Security Partner, digital pki, Certificate Reporting Tool, Public Key Infrastructure, Certificate Management System (CMS), mCMS, Microsoft Public Key Infrastructure, iPad, iOS management certificates, mobile certificate, iOS, Blog, Simple Certificate Enrollment Protocol, BYOD, Got PKI?

Posts by Topic

see all

Want to Learn more about CSS?