Cyber Attacks, Code Signing, and the Digital Supply Chain
Hello again! Welcome to my second blog. Going to shift gears a bit from my personal PKI journey to discuss cyber-attacks. With the recent SolarWinds and Colonial Pipeline incidents, cyber-attacks have been dominating the news. These are just two of the latest in a string of attacks that are becoming all too frequent. These assaults present a […]
Field Report – PKI Spotlight Rocked My World Again
This is another blog in the series about how PKI Spotlight is changing how customers realize improved operational efficiency, enhanced security, and better visibility of their PKI and HSM key management environments, and how it’s changing our world as PKI practitioners. All the names and specifics are redacted to protect the confidentiality of all involved […]
Entrust Announces End of Support for TWO Product Lines (nShield Solo+ and nShield Connect+), This May Pose Risks to You…

Entrust announced an nCipher timeline for the End of Sale and End of Support of the nShield Solo+ and nShield Connect+ product lines of Hardware Security Modules (HSM). Units affected will remain on sale and available to purchase (subject to availability) until December 31, 2020. These models will then be covered by a standard […]
Improve Your Organization’s Security Posture Management By Using PKI Spotlight
Maintaining the security and integrity of your organization’s PKI environments with visibility into configurations that can impact identity and encryption systems is foundational to managing your organization’s overall security posture. In this blog post, I’m going to talk about how PKI Spotlight, our new product which is the industry’s first and only real-time PKI and […]
Enabling Active Directory Certificate Services (ADCS) Advanced Audit
Hello S-1-1-0, here is another unscheduled blog post on enabling advanced audit in Microsoft CA. Today I went through another thread on Twitter which suggests how to enable advanced audit in Microsoft CA. Throughout the thread it was apparent that only partial solution was provided. Windows CA auditing engines Microsoft CA implements a set of […]
ADCS Open Protocols specifications
Hello S-1-1-0, Today I want to talk about another area in ADCS I’m contributing to — Open Protocols specifications. Around 15 years ago, Microsoft moved toward to open source and started a new documentation branch called “Open Specifications”, where Microsoft publishes a very detailed Windows protocols specifications so third party can build compatible clients and […]
Digital Trust and IT Security: Empowering Your Organization

Digital Trust and IT Security: Empowering Your Organization Finding a solution to Public Key Infrastructure (PKI) challenges is not always “one-size-fits all”. Tons of factors come into play, but one thing is certain: In today’s digital world, organizations of all sizes rely on PKI to ensure secure communication and protect critical business functions. PKI acts […]
Creating RDP Certificates
In a previous blog on Object Identifiers (OID) in PKI, I mentioned creating a certificate template for Remote Desktop Connection (RDP). In this blog, I will show how to create the template, why the OID and extensions are important, and how to implement it and remove self-signed certificate warnings from RDP connections. Important Note Prior […]