Root Causes Podcast

Proposed legislation in the House of Representatives mandates that federal agencies begin preparation for new quantum resistant cryptographic algorithms.

Every technology space has its jargon. We go over interesting, ambiguous, or amusing terms that are specific to the PKI and digital certificates industry.

A hacking group recently announced a breach of Okta systems, potentially compromising Okta customers. We walk through the attack and its significance.

A foundational tool for monitoring public SSL certificates is crt.sh. We explain what crt.sh does and why it is so popular with SSL industry watchers.

Those using passwordless authentication frequently employ legacy systems that cannot support this scheme. We detail steps to mitigate this problem.

A recent FBI warning cautions organizations about exploits based on misconfigured DUO MFA. We explain this exploit and why it is noteworthy.

A recent phishing campaign encompassed 600 unique domains. We discuss the implications of a campaign of this scale and high level of organization.

On April 1 new root program requirements from Apple for S/MIME certificates go into effect, including a limitation of the allowable term to three years.

We weigh the degree to which Certificate Lifecycle Management (CLM) renders the benefits of wildcard and multi-domain certificates obsolete.

Microsoft has deprecated support for the popular sysadmin tool WMIC. Join our hosts as they explain why and the broader lessons we can learn.

For any Certificate Lifecycle Management platform to succeed, effective deployment is essential. We describe the optimal onboarding process, step by step.

Recently automobile infotainment systems were permanently "bricked" by a HD radio flaw. Our hosts describe what happened and the lessons we can learn.

Gartner analyst David Mahdi explains the reasons for his optimism about digital trust, including NFTs, Web3, blockchain, PKI, and Zero Trust.

Web3 refers to the concept that online content can be attributed to specific known publishers, regardless of web site or online channel.

We explain PKI's specific role in passwordless authentication, clarifying the difference between password-masking and true passwordless technologies.

Jason Soroko explains how he was able to quickly and easily create an encrypted communications mesh for use by him and his collaboration team.

Credential vaults are necessary for secure and functional secrets management for automated systems like DevOps or Robotic Process Automation (RPA).

Certificate Transparency (CT) is essential to monitoring the public SSL certificates that are issued. We explain CT logs and the uses we can put them to.