-
Podcast Dec 08, 2023
Root Causes 346: Private Credentials in Public Code
We uncover the epidemic of private credentials in public-facing code repositories, including why it occurs and what do to about it.
-
Podcast Dec 05, 2023
Root Causes 345: Apple Versus European Sideloading
The European Union is applying pressure to Apple to allow application sideloading. We cover why this is occurring, potential dangers, and Apple's response.
-
Podcast Nov 29, 2023
Root Causes 344: Introducing the PQC Onramp
NIST continues the search for PQC algorithms, especially those using non-Lattice schemes. We explain the PQC "onramp" and what we should expect.
-
Podcast Nov 22, 2023
Root Causes 343: The EIDAS 2.0 Controversy
A controversial aspect of the upcoming eIDAS 2.0 standard is that it limits browsers' ability to determine their own trusted roots. We explain.
-
Podcast Nov 17, 2023
Root Causes 342: Don't Change Your Password for Two Years
The CA/Browser Forum rules stipulate how often forced password changes for CA employees are to occur. They set a MINIMUM time. Join us to learn why.
-
Podcast Nov 13, 2023
Root Causes 341: The Trouble with Security Questionnaires
The practice of sending security questionnaires to technology vendors is exploding, and with it dysfunctional behavior is on the rise.
-
Podcast Nov 06, 2023
Root Causes 340: Is This Podcast Canadian Enough?
Canada's Online Streaming Act will require internet content providers to provide a minimum percentage of content produced by Canadians or face fines.
-
Podcast Oct 31, 2023
Root Causes 339: The ROI of CLM
In this episode we describe at a high level how to calculate the TCO of CLM as opposed to manual installation and management of certificates.
-
Podcast Oct 23, 2023
Root Causes 338: CLM and Your Career as an IT Professional
In this follow up to our episode on CLM and the IT skills gap, we now discuss how CLM matters to individual IT professionals' careers and work life.
-
Podcast Oct 10, 2023
Root Causes 337: CLM and the IT Skills Gap
In this episode we discuss how Certificate Lifecycle Management and certificate automation can help mitigate the challenges posed by the IT skills gap.
-
Podcast Oct 03, 2023
Root Causes 336: Digitally Signing Images on Cameras
A recent press release discusses efforts of camera manufacturers and the digital imagery supply chain to create an ecosystem for digitally signed images.
-
Podcast Sep 29, 2023
Root Causes 335: When MFA Is Not MFA
A social engineering attack to steal a one-time password (OTP) to enable unauthorized access is further exploited by a cloud backup feature.