Public Key Infrastructure Consortium (PKI Consortium)

Trusted digital assets and communication for everyone and everything

Check the slides and recording of our first Post-Quantum Cryptography Conference

PKI Consortium

The PKI Consortium is comprised of leading organizations that are committed to improve, create and collaborate on generic, industry or use-case specific policies, procedures, best practices, standards and tools that advance trust in assets and communication for everyone and everything using Public Key Infrastructure (PKI) as well as the security of the internet in general. By engaging with users, regulators, supervisory bodies and other interested or relying parties the consortium can address actual issues. [learn more…]

Public Key Infrastructure

Public Key Infrastructure (PKI) defines the foundation for most modern security systems and provides Confidentiality, Integrity, Authenticity and Non-repudiation. It relies on public key cryptography, a universally accepted asymmetric technology that enables entities to securely communicate using an insecure transport or media, reliably link the data to the signatory and protects the integrity of the data while proving guarantees about the existence of the data at the time of signature creation.

Call for Post-Quantum Cryptography presentations
March 7, 2023 by Paul van Brouwershaven (Entrust) Conference Post-Quantum Cryptography PQC
Call for Presentations We are now accepting proposals for presentations the next Post-Quantum Cryptography Conference of the PKI Consortium, taking place in Europe after the summer of 2023. We’re looking for speakers to share their expertise on a variety of topics related to Post-Quantum Cryptography. Speakers are expected to be physically present at the conference. Speakers are prohibited to promote their products or services. All sessions will live streamed, recorded and be publicly available.

A successful first Post-Quantum Cryptography Conference
March 7, 2023 by Paul van Brouwershaven (Entrust) Conference Post-Quantum Cryptography PQC
The PKI Consortium held its first Post-Quantum Cryptography conference on Friday March 3, in Ottawa, Canada. With a hundred attendees onsite and over six hundred attendees watching the live stream, it was a resounding success.

Sharing information on Post-Quantum Cryptography Capabilities
January 26, 2023 by Paul van Brouwershaven (Entrust), Tomas Gustavsson (Keyfactor), Lukáš Geyer, Sven Rajala Post-Quantum Cryptography PQC
The PKI Consortium is managing a PQC Capabilities Matrix of software applications, libraries and hardware that includes support for Post-Quantum Cryptography, without endorsing their implementation or quality.

Protect Your Software and Build User Trust: The Ultimate Code Signing Solution

Code signing has proven to be a crucial tool for ensuring software security in the modern digital environment. To ensure that software is safe and secure, code signing has become an essential aspect of software development. Code signing is the process of digitally signing software to verify the authenticity and integrity of the code. Given […] The post Protect Your Software and Build User Trust: The Ultimate Code Signing Solution appeared first on Encryption Consulting. Published on Saturday April 1, 2023 at www.encryptionconsulting.com

SSL Review: February 2023

The Entrust monthly SSL review covers TLS/SSL discussions — recaps, news, trends, and opinions from... The post SSL Review: February 2023 appeared first on Entrust Blog. Published on Friday March 31, 2023 at www.entrust.com

Use of CRL Reason Codes Updated

The CA/Browser Forum has approved Ballot SC61 with directions as to which certificate revocation lists... The post Use of CRL Reason Codes Updated appeared first on Entrust Blog. Published on Thursday March 30, 2023 at www.entrust.com

G-Cloud Benefits | Ascertia | Blog

What are the benefits of the G-Cloud digital marketplace? The G-Cloud framework has revolutionised how public sector departments access innovative cloud-based IT solutions. Launched in 2012 and now in its thirteenth iteration, it provides the UK Government and public sector with the ability to procure services from approved cloud-based suppliers. The platform has helped organisations sell and manage their business with UK Government in a more efficient manner. This is especially true for SME-type companies. Published on Thursday March 30, 2023 at blog.ascertia.com

What are the best practices for code signing and how to implement them?

When dealing with cybersecurity and the security of an organization, it is vital to prepare for every eventuality. One of the most important forms this takes, especially with organizations creating and distributing software to customers, is code signing. At its core, code signing is a relatively simple process. A software publisher or distributor wants to […] The post What are the best practices for code signing and how to implement them? appeared first on Encryption Consulting. Published on Thursday March 30, 2023 at www.encryptionconsulting.com

An Approach to Resolving PKI Talent Scarcity

Every year, the Ponemon Institute surveys more than 2,500 IT leaders who are immersed in... The post An Approach to Resolving PKI Talent Scarcity appeared first on Entrust Blog. Published on Monday March 27, 2023 at www.entrust.com

How do code-signing machine identities protect your network?

In today’s digital landscape, malicious code and software threats are a constant concern for organizations of all sizes. Cybercriminals use a variety of tactics to compromise networks and steal sensitive data. One of the most common ways they do this is by distributing malware and other malicious code under the guise of legitimate software. Organizations […] The post How do code-signing machine identities protect your network? appeared first on Encryption Consulting. Published on Monday March 27, 2023 at www.encryptionconsulting.com

What you need to know about PKCS#11 ?

Public-key Certificate Standards (PKCS) is a group of cryptographic standards that provide guidelines and application programming interfaces (APIs) for using cryptographic methods. It seems too overwhelming for any person trying to start with PKCS. Let’s try to simplify things here; PKCS lays the infrastructure for the basic grounds of information exchange using PKI. It is […] The post What you need to know about PKCS#11 ? appeared first on Encryption Consulting. Published on Friday March 24, 2023 at www.encryptionconsulting.com

PKI Server achieves Common Criteria certification | Ascertia | Blog

What is Common Criteria and why is it important? From the Cloud Signature Consortium to eIDAS, international standards form the bedrock of Ascertia’s digital trust solutions. Common Criteria (CC) is another such example, an international standard for certifying computer security software and hardware. Published on Thursday March 23, 2023 at blog.ascertia.com

Finding the Industry-First Software Supply Chain Security Toolkit

We are in an age where digital signature represents the mark of authenticity; seeing the world grow at such a rapid pace today, every single thing needs verification on the internet, be it any source code, script, key pair, or any sort of utility item that a third party offers. All the content we see […] The post Finding the Industry-First Software Supply Chain Security Toolkit appeared first on Encryption Consulting. Published on Wednesday March 22, 2023 at www.encryptionconsulting.com

How to sign ClickOnce manifests with Visual Studio

Reading Time: 4 minutes When a program, script, or macro is downloaded, a popup window asking, “Are you sure you want to run this?” will appear during installation or execution. or “Do you want to let the next program affect this computer?” Code signing is being used in this popup. Code signing tools are crucial […] The post How to sign ClickOnce manifests with Visual Studio appeared first on Encryption Consulting. Published on Monday March 20, 2023 at www.encryptionconsulting.com

How to Sign Excel macro project with SignTool

Reading Time: 6 minutes Code signing is a security mechanism used to verify the authenticity and integrity of digital code. It involves adding a digital signature to code, which allows users to determine who created it and whether it has been tampered with. Code signing is commonly used to sign executable files, libraries, and scripts, […] The post How to Sign Excel macro project with SignTool appeared first on Encryption Consulting. Published on Friday March 17, 2023 at www.encryptionconsulting.com

Do you have Cryptographic Agility?

There is a consensus across industry and governments that organizations should start planning how they... The post Do you have Cryptographic Agility? appeared first on Entrust Blog. Published on Tuesday March 14, 2023 at www.entrust.com

Tokenization: Enabling the Intersection of Data Security and Exceptional User Experiences

Tokenization in the financial card space is not new. Generally speaking, the technology was first... The post Tokenization: Enabling the Intersection of Data Security and Exceptional User Experiences appeared first on Entrust Blog. Published on Tuesday March 14, 2023 at www.entrust.com

Entrust Software Security Architect Recognized as an Excellence Award Finalist by Microsoft

It’s with great pride that we announce our colleague Mike Ounsworth has been named an... The post Entrust Software Security Architect Recognized as an Excellence Award Finalist by Microsoft appeared first on Entrust Blog. Published on Monday March 13, 2023 at www.entrust.com

Unreleased findings from the Entrust Cybersecurity Institute’s “Future of Identity” Report

Younger consumers – especially Gen Z – value the promise of simplified experiences that digital... The post Unreleased findings from the Entrust Cybersecurity Institute’s “Future of Identity” Report appeared first on Entrust Blog. Published on Monday March 13, 2023 at www.entrust.com

3 key insights from the Entrust Cybersecurity Institute’s “Future of Identity” Report

We surveyed 1,450 consumers globally to understand how they feel about emerging identity topics —... The post 3 key insights from the Entrust Cybersecurity Institute’s “Future of Identity” Report appeared first on Entrust Blog. Published on Monday March 13, 2023 at www.entrust.com

CipherTrust Manager Backup Error

Reading time: 3 minutes In this blog, we’ll discuss the issues faced while scheduling backups on CipherTrust Manager. Error codeDesc: NCERRInvalidParamValue errorMessage: Specified backup key does not exist for scope (system) Description Let’s consider that we have 4 CipherTrust Manager nodes (thales01.ec.com, thales02.ec.com, thales03.ec.com, thales04.ec.com) in a cluster. As per the procedure, we’ll have to […] The post CipherTrust Manager Backup Error appeared first on Encryption Consulting. Published on Sunday March 12, 2023 at www.encryptionconsulting.com

FIPS 140-2 security requirements

FIPS (Federal Information Processing Standard) 140-2 is a set of standards established by the National Institute of Standards and Technology (NIST) for security requirements in cryptographic modules used in government systems. Cryptographic modules are computer hardware or software that protect data through encryption or other cryptographic methods. The purpose of the FIPS 140-2 standard is […] The post FIPS 140-2 security requirements appeared first on Encryption Consulting. Published on Sunday March 12, 2023 at www.encryptionconsulting.com

What does a racecar have to do with cybersecurity?

Not long ago, Entrust created a racecar commercial showcasing how we help our customers manage identities, payments,... The post What does a racecar have to do with cybersecurity? appeared first on Entrust Blog. Published on Thursday March 9, 2023 at www.entrust.com

398 > 90 [News]

The post 398 > 90 [News] appeared first on TRUSTZONE. Published on Wednesday March 8, 2023 at trustzone.com

Top Code Signing tools for 2023

Read Time: 10 minutes As we live in the digital era, software security has become a critical concern in software development. With the increasing frequency and complexity of cybersecurity threats, developers must take proactive measures to safeguard their software and users. Digital signing using a code signing tool is an essential approach to ensure software […] The post Top Code Signing tools for 2023 appeared first on Encryption Consulting. Published on Tuesday March 7, 2023 at www.encryptionconsulting.com

Identity verification in today’s digital-first era

The identity verification market was valued at $11B in 2022. It’s anticipated that in the... The post Identity verification in today’s digital-first era appeared first on Entrust Blog. Published on Monday March 6, 2023 at www.entrust.com

ADSS Server 8.0 release | Ascertia | Blog

Ascertia launched the ADSS Server 8.0 release on 3 March 2023. ADSS Server is a platform for trust service providers, governments, and organisations to provide digital trust through digital certificates for people, devices, and applications. Published on Friday March 3, 2023 at blog.ascertia.com

Our new column: “3 Questions for” Matthias Freymann

Matthias Freymann is a consultant for data protection and information security at TÜV TRUST IT. We have three questions for him today: 1. What makes your work so interesting for you? In my work, I meet customers from a wide variety of sectors: Industry, retail, banking, public administration, food production – the whole range of sectors. And with each client I learn new aspects of their professions. So it never gets boring and no two projects are the same. 2. Why did you finally decide to join TÜV TRUST IT (back then)? In my 27 years of professional life, I… The post Our new column: “3 Questions for” Matthias Freymann appeared first on TÜV TRUST IT GmbH Unternehmensgruppe TÜV AUSTRIA. Published on Friday February 24, 2023 at it-tuv.com