-
Podcast Nov 29, 2023
Root Causes 344: Introducing the PQC Onramp
NIST continues the search for PQC algorithms, especially those using non-Lattice schemes. We explain the PQC "onramp" and what we should expect.
-
Podcast Nov 22, 2023
Root Causes 343: The EIDAS 2.0 Controversy
A controversial aspect of the upcoming eIDAS 2.0 standard is that it limits browsers' ability to determine their own trusted roots. We explain.
-
Podcast Nov 17, 2023
Root Causes 342: Don't Change Your Password for Two Years
The CA/Browser Forum rules stipulate how often forced password changes for CA employees are to occur. They set a MINIMUM time. Join us to learn why.
-
Podcast Nov 13, 2023
Root Causes 341: The Trouble with Security Questionnaires
The practice of sending security questionnaires to technology vendors is exploding, and with it dysfunctional behavior is on the rise.
-
Podcast Nov 06, 2023
Root Causes 340: Is This Podcast Canadian Enough?
Canada's Online Streaming Act will require internet content providers to provide a minimum percentage of content produced by Canadians or face fines.
-
Podcast Oct 31, 2023
Root Causes 339: The ROI of CLM
In this episode we describe at a high level how to calculate the TCO of CLM as opposed to manual installation and management of certificates.
-
Podcast Oct 23, 2023
Root Causes 338: CLM and Your Career as an IT Professional
In this follow up to our episode on CLM and the IT skills gap, we now discuss how CLM matters to individual IT professionals' careers and work life.
-
Podcast Oct 10, 2023
Root Causes 337: CLM and the IT Skills Gap
In this episode we discuss how Certificate Lifecycle Management and certificate automation can help mitigate the challenges posed by the IT skills gap.
-
Podcast Oct 03, 2023
Root Causes 336: Digitally Signing Images on Cameras
A recent press release discusses efforts of camera manufacturers and the digital imagery supply chain to create an ecosystem for digitally signed images.
-
Podcast Sep 29, 2023
Root Causes 335: When MFA Is Not MFA
A social engineering attack to steal a one-time password (OTP) to enable unauthorized access is further exploited by a cloud backup feature.
-
Podcast Sep 27, 2023
Root Causes 334: What Is Attestation on the Web?
Most people hate dealing with CAPTCHA, but it offers benefits for web sites. We discuss alternatives to CAPTCHA, how they work, and their pros and cons.
-
Podcast Sep 21, 2023
Root Causes 333: Intel Side Channel Attack Steals Private Keys
A newly revealed side channel attack can capture AES encryption keys from Intel chips. We explain this significant and powerful attack.