We discuss how a static PKI structure can hurt corporate flexibility and resilience. Events like reorgs and M&A activity can cause intractable problems.
Root Causes Podcast
Mostrando 91 a 108 di 620 podcasts
In this episode, Jason describes how we might use the principles of PKI in a purely offline scenario.
Public certificates are transitioning from multi-purpose root hierarchies to single-purpose ones. We discuss why.
We compare AI in 2025 to Internet in 1995 and describe the AI iceberg, including the majority of applications which are below the waterline.
Verified Mark Certificates (VMC) now have a companion product for logos that are not registered trademarks, called a Common Mark Certificate (CMC). We explain the differences.
A CA has incorrectly issued TLS certificates for the 1.1.1.1 and 2.2.2.2 IP addresses. We go into the details.
Client authentication using public TLS server certificates is on the deprecation path. In this episode we go through the key dates in this deprecation.
Based on the ready availability of AI-based voice cloning, we declare voice biometric authentication to be utterly valueless.
A new CABF ballot proposal will eliminate all email- and phone-based DCV over the next few years. We go into the details.
Three major changes are coming to the world of public certificates, all of which require major changes in how organizations deploy, renew, and manage their certificates. These are 47-day SSL, PQC, and the deprecation of mTLS. We describe the overlap…
MPIC (Multi-perspective Issuance Corroboration) is soon to move into enforcement phase. In this episode we describe three configuration decisions that can force Domain Control Validation (DCV) to fail and tell you what to do about them before you…
We complete our description and commentary on the results of Sectigo's survey of enterprise preparedness for Post Quantum Cryptography (PQC).
We're back discussing the results of Sectigo's 2025 State of Crypto Agility report. We explore the second half of the report on post quantum cryptography (PQC) including enterprise awareness of PQC, the most influential drivers for PQC migration,…
Sectigo released its 2025 State of Crypto Agility report which explores enterprise readiness and preparation for 47-day maximum SSL/TLS certificate term.
AI is not the elephant in the room. It is the room itself. Jason explains what he means by that.
Britain's National Cyber Security Centre recently issued a lukewarm verdict on passkeys as an authentication solution. We explore the problems with WebAuthn, including account recovery, spotty availability, inconsistent implementation, and lack of…
Jason walks us through an important recent paper from Google tracking the cost of quantum factoring.
Microsoft has finally announced that it will offer an update to Active Directory Certificate Services (ADCS, formerly MSCA) to support post quantum cryptography. We discuss Microsoft's checkered support for ADCS and offer some questions users should be asking.