Gardening and Weeding Certificate Templates: Private Key Flags 

By Michael Bruno | January 18, 2023 |
Certificate Template Mismanagement Cybersecuroty Threat Risk Compliance Laws Regulations IT Insurance Risk Analysts and Audits

Mismanagement of certificate templates is one of the lowest of the low-hanging fruits when it comes to ADCS threat vectors. Among other things, a misconfigured certificate template can lead to a threat actor obtaining a certificate which could be used for privilege escalation up to and including Enterprise Administrator!  As you can imagine, it’s a…

Read More

Windows ADCS Migration and Modernization

By Josh Sommer | December 8, 2022 |
Windows ADCS Migration and Modernization

Below are the key highlights, Q&A from our PKI Solutions “Office Hours”: The Migration Edition While our focus was on Windows Server 2012 R2 ADCS migration “common gotchas”, questions and concerns about this topic, and specifically how to align key, certificate infrastructure strategy with the cloud first approach, developer productivity and strategic business initiatives were…

Read More

Entrust Announces End of Support for TWO Product Lines (nShield Solo+ and nShield Connect+), This May Pose Risks to You… 

By Josh Sommer | November 29, 2022 |
Entrust Announces End of Support for TWO Product Lines nShield Solo and nShield Connect This May Pose Risks to You 11.29.22

Entrust announced an nCipher timeline for the End of Sale and End of Support of the nShield Solo+ and nShield Connect+ product lines of Hardware Security Modules (HSM). Units affected will remain on sale and available to purchase (subject to availability) until December 31, 2020. These models will then be covered by a standard two-year…

Read More