Root Causes Podcast

2014's Heartbleed vulnerability made it possible to steal private keys directly from web servers, requiring certificate replacement by the millions.

2020 was a big year for SASE (Secure Access Service Edge). We define SASE, ZTNA (Zero Trust Network Architecture), and SDP (Software Defined Perimeter).

In 2020 COVID-19 changed the way we work. Our hosts dicsuss the affect on employee access, Zero Trust, retail IT, immunity passports, and more.

In our ongoing examination of MFA, we examine authentication through soft-token OTP (one-time passcode) and compare it to SMS tokens and hard tokens.

Apple's Big Sur OS rollout drove a slowdown in the company's OCSP responders, affecting all Apple operating systems. We explain what happened and why.

We discuss the weaknesses of passwords and why they nonetheless are still common. We describe the roadmap for weeding out passwords from most systems.

Hard tokens are an old multi-factor authentication (MFA) form factor, still in use today. We examine the strengths and weaknesses of hard tokens.

Certificate agility refers to building our systems so that all certificates are known, current, and immediately replaceable.

We explore biometric MFA, including strengths and weaknesses and the idea that biometrics are more about proof of possession than identity authentication.

PKI and digital certificates depend on asymmetric encryption. Learn the difference between asymmetric and symmetric secrets & how they fit into encryption.

A discussion of passwordless authentication and access for Apple platforms (with Joel Rennich of Jamf).

New research shows how ransomware attacks could be launched against IoT devices. Understand these attacks and what can be done to defend against them.

Our hosts discuss what compliance means at a public Certificate Authority (CA) like Sectigo and what the Chief Compliance Officer does.

Certificate-based digital identity and Identity and Access Management (IAM) platforms are entirely different things. How do they fit in with each other?

Our hosts explain terms like Hardware Security Module (HSM), Trusted Platform Module (TPM), Secure Enclave, TrustZone, and Hardware Secure Element (SE).

How do digital identity and certificates fit into the SASE (Secure Access Service Edge) paradigm?

Learn why crypto agility is more important than ever, why the pace of cryptographic change is going up, and you can do to improve crypto agility.

Sectigo's Quantum Safe Kit enables hybrid TLS certificates. Find out how hybrid certificates are essential to transitioning to quantum-safe crypto.