Cyber Attacks, Code Signing, and the Digital Supply Chain

Hello again! Welcome to my second blog.  Going to shift gears a bit from my personal PKI journey to discuss cyber-attacks. With the recent SolarWinds and Colonial Pipeline incidents, cyber-attacks have been dominating the news.  These are just two of the latest in a string of attacks that are becoming all too frequent.  These assaults present a […]

Field Report – PKI Spotlight Rocked My World Again

This is another blog in the series about how PKI Spotlight is changing how customers realize improved operational efficiency, enhanced security, and better visibility of their PKI and HSM key management environments, and how it’s changing our world as PKI practitioners. All the names and specifics are redacted to protect the confidentiality of all involved […]

Improve Your Organization’s Security Posture Management By Using PKI Spotlight

Maintaining the security and integrity of your organization’s PKI environments with visibility into configurations that can impact identity and encryption systems is foundational to managing your organization’s overall security posture. In this blog post, I’m going to talk about how PKI Spotlight, our new product which is the industry’s first and only real-time PKI and […]

Enabling Active Directory Certificate Services (ADCS) Advanced Audit

Hello S-1-1-0, here is another unscheduled blog post on enabling advanced audit in Microsoft CA. Today I went through another thread on Twitter which suggests how to enable advanced audit in Microsoft CA. Throughout the thread it was apparent that only partial solution was provided. Windows CA auditing engines Microsoft CA implements a set of […]

ADCS Open Protocols specifications

Hello S-1-1-0, Today I want to talk about another area in ADCS I’m contributing to — Open Protocols specifications. Around 15 years ago, Microsoft moved toward to open source and started a new documentation branch called “Open Specifications”, where Microsoft publishes a very detailed Windows protocols specifications so third party can build compatible clients and […]

Digital Trust and IT Security: Empowering Your Organization

Digital Trust and IT Security: Empowering Your Organization Finding a solution to Public Key Infrastructure (PKI) challenges is not always “one-size-fits all”. Tons of factors come into play, but one thing is certain: In today’s digital world, organizations of all sizes rely on PKI to ensure secure communication and protect critical business functions. PKI acts […]

Creating RDP Certificates

In a previous blog on Object Identifiers (OID) in PKI, I mentioned creating a certificate template for Remote Desktop Connection (RDP). In this blog, I will show how to create the template, why the OID and extensions are important, and how to implement it and remove self-signed certificate warnings from RDP connections. Important Note Prior […]