Jason Soroko is an experienced security technology innovator, responsible for the product team that drives innovation at Sectigo. He is responsible for interfacing with customers, researching, innovating, educating, and contributing to strategy, national-level guidance, intellectual property development, and consortium standards. Solving real business problems by synthesizing state-of-the-art security with real-world operational needs is what Jason does best.
Recent posts from Jason Soroko
Podcast
Root Causes 381: Apple Chip Sideloading Attack Leaks Encryption Keys
Apr 26, 2024
A newly revealed side channel attack enables theft of private keys from M-series Apple chips. We explain.
Podcast
Root Causes 380: If Quantum Supremacy Comes Earlier Than Expected
Apr 23, 2024
We talk about the challenges to PQC migration and what happens if quantum computers break RSA before we're expecting them to.
Podcast
Root Causes 379: AI-generated Fake IDS for KYC
Apr 18, 2024
Inexpensive and easily obtained deepfake photographs of IDs, generated by AI, are available online. These pose a problem for KYC initiatives.
Webinar
Webinar: An introduction to managed private CAs
Apr 18, 2024
An introduction to managed private CAs: the common use cases of private CAs, helping to provide tighter control of authentication with digital certificates
Podcast
Root Causes 378: Why Are Forced Revocations So Difficult?
Apr 15, 2024
We delve deep into the problem of failure to revoke on time and the multiple causes that lead to this ongoing failure.
Podcast
Root Causes 377: Is CPS/Issuance Misalignment a Revocation Event?
Apr 11, 2024
If you issue public certificates that are fully compliant except they don't reflect what your CPS says, are they misissued? Do they require revocation?
Podcast
Root Causes 376: Gartner's New CLM Framework
Apr 08, 2024
Gartner has released a new framework for Certificate Lifecycle Management, called the Seven Core Functions of Certificate Automation.
Podcast
Root Causes 375: What Is Name Space Lifecycle Management?
Apr 05, 2024
CNAMEs, SPF, DMARC, name server entries, and other DNS identifiers, left unattended, can expose companies to identity-based attacks.
Podcast
Root Causes 374: NIST Cyber Security Framework 2 Released
Apr 01, 2024
NIST Cyber Security Framework version 2.0 is released. It includes guidance on identity management and authentication.