-
Podcast Jan 04, 2024
Root Causes 352: FBI Vs. End-to-end Encryption in Meta Apps
Meta is finally rolling out end-to-end encryption across its messaging apps. This is the latest chapter in the long story of government versus encryption.
-
Podcast Dec 27, 2023
Root Causes 351: 2024 Predictions
We look forward to 2024 and predict trends for PKI, certificates, and digital identity.
-
Podcast Dec 21, 2023
Root Causes 350: Public Certificates & the GDPR Right to Be Forgotten
GDPR provides a "right to be forgotten," whereby individuals can demand the removal of PII from IT systems. This can run contrary to public PKI systems.
-
Podcast Dec 18, 2023
Root Causes 349: 2023 Lookback - Overall Trends
We look back at PKI in 2023. Trends include AI, enterprise crypto agility, OCSP's fall, PKI everywhere, weak passwords, and government vs. the internet.
-
Podcast Dec 15, 2023
Root Causes 348: What Is a Merkle Tree?
One foundational element of modern cryptographic systems is the Merkle tree. We explain this data structure, its properties, and its use cases.
-
Podcast Dec 11, 2023
Root Causes 347: 2023 Lookback - Shortening Certificate Lifespans
90-day SSL certificates is only part of it! 2023 has been a year of certificate lifespans getting shorter.
-
Podcast Dec 08, 2023
Root Causes 346: Private Credentials in Public Code
We uncover the epidemic of private credentials in public-facing code repositories, including why it occurs and what do to about it.
-
Webinar Dec 07, 2023
The five pillars of certificate lifecycle management
Join our webinar to learn about the five pillars of certificate lifecycle management, building upon the foundations of visibility.
-
Podcast Dec 05, 2023
Root Causes 345: Apple Versus European Sideloading
The European Union is applying pressure to Apple to allow application sideloading. We cover why this is occurring, potential dangers, and Apple's response.
-
Podcast Nov 29, 2023
Root Causes 344: Introducing the PQC Onramp
NIST continues the search for PQC algorithms, especially those using non-Lattice schemes. We explain the PQC "onramp" and what we should expect.
-
Blog Post Nov 22, 2023
How can a user be sure software has not been tampered with during the distribution process? We need a verification process Code Signing enhances trust and prevents the spread of malware and are proven to be reliable and sure over decades of widespread use. However, did you know about the recent standards update that added a hardware token requirement? Here's how a token can help you improve security.
-
Podcast Nov 22, 2023
Root Causes 343: The EIDAS 2.0 Controversy
A controversial aspect of the upcoming eIDAS 2.0 standard is that it limits browsers' ability to determine their own trusted roots. We explain.