PKI Consortium blog
Posts by author Paul van Brouwershaven
Sharing information on Post-Quantum Cryptography Capabilities
January 26, 2023 by Paul van Brouwershaven (Entrust), Tomas Gustavsson (Keyfactor), Lukáš Geyer, Sven Rajala Post-Quantum Cryptography PQC
The PKI Consortium is managing a PQC Capabilities Matrix of software applications, libraries and hardware that includes support for Post-Quantum Cryptography, without endorsing their implementation or quality.
You are invited to participate in the PKI Consortium’s first Post-Quantum Cryptography (PQC) conference
November 30, 2022 by Paul van Brouwershaven (Entrust), Kirk Hall (Entrust) Conference Post-Quantum Cryptography PQC
Speakers at this conference include some of the world’s top Post-Quantum Cryptography (PQC) experts and come from government science agencies, standards bodies, and private organizations at the forefront of this new challenge to digital security. Topics will cover the status of PQC standardization at NIST, ETSI, and IETF, government preparations, migration strategies, etc.
Creating a global List of Trust Lists
November 24, 2021 by Paul van Brouwershaven (Entrust) LTL
The PKI Consortium is curating a global List of Trust Lists (a curated list of root, intermediate or issuing CA certificates accepted by a public, private, industry, or solution-specific PKI), one that is not limited to a specific purpose, region, or size, and is open to anyone to contribute.
Increasing support and awareness for Remote Key Attestation
August 3, 2021 by Paul van Brouwershaven (Entrust), Tomas Gustavsson (Keyfactor), Giuseppe Damiano HSM Key Attestation Secure Enclave Smart-card Token TPM
The PKI Consortium is collecting information (and looking for contributions) on how or if solutions provide a method to prove to a remote party that a private key was generated, managed inside, and not exportable from, a hardware cryptographic module.
From CASC to the Public Key Infrastructure Consortium
July 12, 2021 by Chris Bailey (Entrust), Paul van Brouwershaven (Entrust) CASC PKI PKIC
Over the years, the need for private, industry, or solution-specific PKI has grown significantly, with stricter policies and the revocation of certificates and CAs becoming more common. The impact of changes in centralized PKI have caused delays and disruption of third-party services that may or may not have been considered. Any PKI (public, private, or specific) must operate according to best practices, clear policies and without a single point of failure.