PKI
Gardening and Weeding Certificate Templates: Private Key Flags
Mismanagement of certificate templates is one of the lowest of the low-hanging fruits when it comes to ADCS threat vectors. Among other things, a misconfigured certificate template can lead to a threat actor obtaining a certificate which could be used for privilege escalation up to and including Enterprise Administrator! As you can imagine, it’s a…
Read MorePKI Threat Detection and Recon: Code Signing – “The Signed Back Door” Webinar
Below are the key highlights, Q&A from our PKI Solutions “Office Hours”: The PKI Threat Detection and Recon: Code Signing Episode While our focus was on default check boxes and PKI misconfigurations, which can give adversaries access to a code signing certificate or they can just create their own, we touched on may topics. Presenter…
Read MorePKI Threat Detection and Recon: Code Signing – “The Signed Back Door” & Voldemort
Join us for an hour of Live Q&A at our PKI Solutions “Office Hours.” – The PKI Threat Detection and Recon: Code Signing – “The Signed Back Door” & Voldemort Episode A default check box or a PKI misconfiguration can give adversaries access to a code signing certificate or they can just create their own.…
Read MoreWindows ADCS Migration and Modernization
Below are the key highlights, Q&A from our PKI Solutions “Office Hours”: The Migration Edition While our focus was on Windows Server 2012 R2 ADCS migration “common gotchas”, questions and concerns about this topic, and specifically how to align key, certificate infrastructure strategy with the cloud first approach, developer productivity and strategic business initiatives were…
Read MoreEntrust Announces End of Support for TWO Product Lines (nShield Solo+ and nShield Connect+), This May Pose Risks to You…
Entrust announced an nCipher timeline for the End of Sale and End of Support of the nShield Solo+ and nShield Connect+ product lines of Hardware Security Modules (HSM). Units affected will remain on sale and available to purchase (subject to availability) until December 31, 2020. These models will then be covered by a standard two-year…
Read More