March and April 2024 have seen more than 25 new Bugzilla bugs being written up – more than 10 times the typical pace.
Resource Library
Showing 1 to 18 of 28 resources
An introduction to managed private CAs: the common use cases of private CAs, helping to provide tighter control of authentication with digital certificates
Recent public discussion of FIDO and digital certificates reveal details of Microsoft's approach to consumer digital authentication.
We look back at the continued erosion of reliable online identity, including deep fakes, celebrity phishing, AI-generated art and Twitter blue check marks.
We explore why the Twitter blue check marks failed and the challenges in authenticating and vouching for the identity of an individual or organization.
We explore out-of-band phone calling as a MFA method, including, what attacks it defends against successfully, and what attacks can circumvent it.
A new attack allows cloning of the Google Titan secure key. we describe this attack and its implications for Titan and other secure keys.
In 2020 COVID-19 changed the way we work. Our hosts dicsuss the affect on employee access, Zero Trust, retail IT, immunity passports, and more.
In our ongoing examination of MFA, we examine authentication through soft-token OTP (one-time passcode) and compare it to SMS tokens and hard tokens.
We discuss the weaknesses of passwords and why they nonetheless are still common. We describe the roadmap for weeding out passwords from most systems.
Hard tokens are an old multi-factor authentication (MFA) form factor, still in use today. We examine the strengths and weaknesses of hard tokens.
A discussion of passwordless authentication and access for Apple platforms (with Joel Rennich of Jamf).
How do digital identity and certificates fit into the SASE (Secure Access Service Edge) paradigm?
This white paper by Enterprise Security Group examines how PKI fits into and enables your zero-trust strategy.
SMS-based one time password (OTP) is a common form of multi-factor authentication (MFA). Our hosts explain how this scheme fails the security test.
As we plan our societal return to normalcy, a number of people and groups are discussing the concept of an electronic "immunity passport" that individuals can possess if they are known to be immune to COVID-19 (possibly through vaccination or prior…
"Zero Trust" is an IT security philosophy that maximizes protection from threats by tightly controlling access and permissions for every individual, device, and process in the organization's environment. Learn how digital identity and certificates…
"Zero Trust" maximizes protection from threats by controlling permissions for every individual, device, and process in the organization's environment.
Need assistance?
Contact our team for help with your purchase or issuing your certificate.