Public Key Infrastructure Consortium (PKI Consortium)

Trusted digital assets and communication for everyone and everything

Our second Post-Quantum Cryptography Conference will be in Amsterdam (and online), on 7 and 8 November 2023. Click here for more information and to register for the conference.

PKI Consortium

The PKI Consortium is comprised of leading organizations that are committed to improve, create and collaborate on generic, industry or use-case specific policies, procedures, best practices, standards and tools that advance trust in assets and communication for everyone and everything using Public Key Infrastructure (PKI) as well as the security of the internet in general. By engaging with users, regulators, supervisory bodies and other interested or relying parties the consortium can address actual issues. [learn more…]

Public Key Infrastructure

Public Key Infrastructure (PKI) defines the foundation for most modern security systems and provides Confidentiality, Integrity, Authenticity and Non-repudiation. It relies on public key cryptography, a universally accepted asymmetric technology that enables entities to securely communicate using an insecure transport or media, reliably link the data to the signatory and protects the integrity of the data while proving guarantees about the existence of the data at the time of signature creation.

Second Post-Quantum Cryptography Conference: Register now to join us in Amsterdam or Online!
August 31, 2023 by Paul van Brouwershaven (Entrust) Conference Post-Quantum Cryptography PQC
Join us on November 7 and 8, either in-person at the Meervaart in Amsterdam or remotely online. Explore the forefront of Post-Quantum Cryptography with renowned speakers from NIST, ENISA, BSI, and more. Registration is free and open to all, not limited to PKI Consortium members.

Introducing first PKI Maturity Model (PKIMM)
August 10, 2023 by Roman Cinkais (3Key Company) Maturity model PKIMM
The PKI Consortium publishes initial draft of the PKI maturity model with related resources to help the industry build mature and future proof PKI including guidelines on how to evaluate the assessment and provide reporting to relying parties. The PKI maturity model is recognized as a standard for evaluation, planning, and comparison between different PKI implementations. In this blog post we are going to introduce the model.

PKI Consortium Unveils the first PKI Maturity Model for feedback
August 10, 2023 by Paul van Brouwershaven (Entrust) Maturity model PKIMM Press Release
The PKI Consortium, a dynamic alliance dedicated to enhancing trust and security within the digital landscape, proudly announces the preview release of its pioneering PKI Maturity Model. A collaborative effort by the PKI Maturity Model Working Group, this model will revolutionize the way organizations can plan, evaluate, and compare Public Key Infrastructure (PKI) implementations.

Cybersecurity Awareness Month — 7 Tips to Keep Your Organization Safe from Cyber Threats

Written by Fayyaz Makhani, Natasja Bolton, and John McAndrew. October is Cybersecurity Awareness Month – the perfect time of year for organizations of all sizes to brush up on how to stay safe in an ever-evolving cyber threat landscape. To help keep your organization safe this month and year-round, VikingCloud’s expert Cyber Specialists have created [...] The post Cybersecurity Awareness Month — 7 Tips to Keep Your Organization Safe from Cyber Threats appeared first on VikingCloud. Published on Friday September 29, 2023 at www.vikingcloud.com

SSL Review: August 2023

The Entrust monthly digital certificates review covers a range of topics including news, trends, and... The post SSL Review: August 2023 appeared first on Entrust Blog. Published on Thursday September 28, 2023 at www.entrust.com

SEC Adopts New Rules on Cybersecurity Risk Management, Incident Disclosure, and Ransomware Payments by Public Companies

Written By: Fayyaz Makhani In a significant move aimed at enhancing transparency and accountability in the business world, the U.S. Securities and Exchange Commission (SEC) has recently adopted new rules pertaining to cybersecurity risk management, incident disclosure, and ransomware payments for public companies and foreign private investors. This pivotal development comes as a response to [...] The post SEC Adopts New Rules on Cybersecurity Risk Management, Incident Disclosure, and Ransomware Payments by Public Companies appeared first on VikingCloud. Published on Thursday September 28, 2023 at www.vikingcloud.com

3 Questions for… Stefan Möller

Stefan Möller has been procurator and sales manager at TÜV TRUST IT GmbH in Cologne since 2012 and has more than 25 years of experience in sales and project planning for complex IT projects. His current focus is on the sale of consulting projects for the establishment of information security management systems (ISMS). Since 2021, Stefan Möller has also been Managing Director of Certified Security Operation Center GmbH, whose Operations Center as a Service (SOCaaS) monitors and protects customers’ IT systems with regard to possible cyber attacks. We get to ask him 3 questions today: 1. Question: What do you… The post 3 Questions for… Stefan Möller appeared first on TÜV TRUST IT GmbH Unternehmensgruppe TÜV AUSTRIA. Published on Thursday September 28, 2023 at it-tuv.com

All you need to know about Perfect Forward Secrecy

Reading Time : 7 minutes In an increasingly digital world where data breaches and cyber threats are ever-present, ensuring the confidentiality and security of sensitive information has become a paramount concern. Encryption plays a crucial role in safeguarding data, but not all encryption methods are created equal. Perfect Forward Secrecy (PFS) is a cryptographic technique […] Published on Wednesday September 27, 2023 at www.encryptionconsulting.com

Backing Up Key Material Using the Luna 7 Backup HSM

Reading Time : 10 minutes Backup HSMs are an essential part of your key storage ecosystem. They can be used to store to store backups of your cryptographic keys stored on network attached HSMs. This document will guide you in setting up Luna 7 backup HSM. In order to setup a Luna 7 backup HSM […] Published on Tuesday September 26, 2023 at www.encryptionconsulting.com

Generative AI Security Challenges – Fighting fire with fire

Generative AI has emerged as a transformative force. These advanced large language models can autonomously... The post Generative AI Security Challenges – Fighting fire with fire appeared first on Entrust Blog. Published on Tuesday September 26, 2023 at www.entrust.com

VikingCloud Welcomes Gabe Moynagh as New Board Advisor

Leading global cybersecurity and compliance solutions provider announces industry veteran and former co-founder returns to advise on product innovation and strategic customer relationships Dublin, Ireland and Chicago, IL – September 26th, 2023 — VikingCloud, the leading predict-to-prevent cybersecurity and compliance company, today announces the appointment of Gabe Moynagh, its former co-founder, as Strategic Advisor [...] The post VikingCloud Welcomes Gabe Moynagh as New Board Advisor appeared first on VikingCloud. Published on Tuesday September 26, 2023 at www.vikingcloud.com

Mitigating ESC1 and ESC8 Vulnerability in Active Directory

Reading Time : 8 minutes In today’s digital landscape, securing sensitive information and maintaining the integrity of IT environments are paramount concerns for organizations. Microsoft’s Active Directory (AD) is a critical component for many enterprises, serving as a centralized system for managing user identities and permissions. However, like any complex system, AD is not without […] Published on Monday September 25, 2023 at www.encryptionconsulting.com

Zero Trust Architecture: Strengthening User Authentication and Access Management

In a perfect world, there would be no ransomware, phishing, or unauthorized access. Every resource... The post Zero Trust Architecture: Strengthening User Authentication and Access Management appeared first on Entrust Blog. Published on Monday September 25, 2023 at www.entrust.com

ISO 27001:2022 is about to launch – how well-prepared are you?

On 25 October 2022 it came into force – the new ISO/IEC 27001:2022, which will bring several amendments for affected companies. Christoph Zallmann knows everything there is to know about this standard transition. Our Head of ISMS has been working at TÜV TRUST IT since 2019 and consults our customers on all matters related to information security management systems. Today he talks to us about the challenges of the current ISO transition. Mr Zallmann, you are head of the ISMS department at TÜV TRUST IT. How can one imagine your scope of work? I always work closely with our clients,… The post ISO 27001:2022 is about to launch – how well-prepared are you? appeared first on TÜV TRUST IT GmbH Unternehmensgruppe TÜV AUSTRIA. Published on Monday September 25, 2023 at it-tuv.com

EV SSL Certificates: Pros & Cons

Reading Time :12 minutes In today’s interconnected digital landscape, where data is both currency and king, the shield of cybersecurity has never been more critical. Consider this eye-opening fact: global cyberattacks increased by 38% in 2022 compared to 2021, affecting countless businesses and individuals worldwide. Millions of individuals daily entrust their sensitive information to websites, […] Published on Friday September 22, 2023 at www.encryptionconsulting.com

Demystifying ACME Protocol?

Reading Time : 3 minutes In the fast-evolving landscape of modern business operations, the automation of certificate management has become indispensable. This is particularly true given the exponential growth of machine identities required for diverse applications such as IoT devices, cloud systems, APIs, containers, and applications. In this blog, we will explore the pivotal role […] Published on Thursday September 21, 2023 at www.encryptionconsulting.com

Digital Certificate Linting

My recollection of certificate linting goes back to 2016. Linting started happening to most public... The post Digital Certificate Linting appeared first on Entrust Blog. Published on Thursday September 21, 2023 at www.entrust.com

PCI Security Standard Council Announces New SLA Timelines – Effective September 27, 2023

The PCI Security Standard Council (PCI SSC) has stated they are modifying the Assessor Quality Management (AQM) submission timelines. The new SLA will be effective September 27, 2023. According to the PCI SSC, the AQM will move from a 30 calendar-day SLA to a 30 business-day SLA. This change could increase review times. It’s important [...] The post PCI Security Standard Council Announces New SLA Timelines – Effective September 27, 2023 appeared first on VikingCloud. Published on Wednesday September 20, 2023 at www.vikingcloud.com

TÜV TRUST IT now also represented in Dresden

With its new location in Dresden, TÜV TRUST IT GmbH, TÜV AUSTRIA Group provides its customers from now on with an even strengthened service. As a subsidiary of the TÜV AUSTRIA Group, TÜV TRUST IT employs a team of experienced and highly qualified experts in the field of cybersecurity at its locations in Cologne and Vienna. In order to continue to meet the strong growth, the company has also been operating from its new location in Dresden since June 2023, where the full range of security services is available to customers. “For most companies, the topic of cybersecurity is now… The post TÜV TRUST IT now also represented in Dresden appeared first on TÜV TRUST IT GmbH Unternehmensgruppe TÜV AUSTRIA. Published on Tuesday September 19, 2023 at it-tuv.com

Modernized Financial Cards for the Next Generation of Payments

Financial cards have been a cornerstone of our monetary transactions for decades, providing us with... The post Modernized Financial Cards for the Next Generation of Payments appeared first on Entrust Blog. Published on Monday September 18, 2023 at www.entrust.com

What is a certificate chain of trust, and how does it work?

Reading Time : 5 minutes In the fast-paced era of technology, safeguarding communication and preserving data privacy has become exceedingly important. Whether you are simply browsing a website, engaging in an online transaction, or dealing with confidential information, the utmost priority is to guarantee the security and protection of your data, shielding it from prying […] Published on Monday September 18, 2023 at www.encryptionconsulting.com

“3 Questions” for Jürgen Kohr

Dr Jürgen Kohr has been Managing Director of TÜV TRUST IT in Germany and Austria and Head of the Digital Services Business Field at TÜV AUSTRIA since November 2022. Due to his previous responsible activities, he already brought a wealth of experience in the areas of cybersecurity and IT management to the company. Today we have three questions for Dr Jürgen Kohr: Question 1: What do you consider particularly exciting about your job? First of all, that I can freely shape the company and thus our work here in a team of security experts. And furthermore, we can contribute every… The post “3 Questions” for Jürgen Kohr appeared first on TÜV TRUST IT GmbH Unternehmensgruppe TÜV AUSTRIA. Published on Monday September 18, 2023 at it-tuv.com

TLS/SSL vs. HTTPS: Unraveling the Web’s Security Protocols

Reading Time : 10 minutes In today’s digital age, online security is paramount. The rise of cyber threats and the importance of safeguarding sensitive information have led to the development of robust security protocols. Two of the most fundamental web security components are TLS/SSL and HTTPS. These acronyms may seem like alphabet soup, but they […] Published on Friday September 15, 2023 at www.encryptionconsulting.com

International Identity Day 2023: Fostering Identity for Good in an Interconnected World

As we commemorate International Identity Day in 2023, we reflect on the evolving landscape of... The post International Identity Day 2023: Fostering Identity for Good in an Interconnected World appeared first on Entrust Blog. Published on Thursday September 14, 2023 at www.entrust.com