PKI in produktiven Umgebungen – deutlich sicherer als selbstsignierte Zertifikate
#Compliance #Cybersecurity #Cybersicherheit @Keyfactor #PublicKeyInfrastructure #Schwachstelle #Zertifikat #Zertifizierungsstelle #PKI
Recent searches
Search options
#publickeyinfrastructure
0 posts0 participants0 posts today
Wie PKI in vier Schritten bereit für das Quantenzeitalter wird
#Cryptography @Keyfactor #PKI #PostQuantumCryptography #PQC #PublicKeyInfrastructure #Quantencomputer #Verschlüsselung
https://netzpalaver.de/2025/04/14/wie-pki-in-vier-schritten-bereit-fuer-das-quantenzeitalter-wird/
Netzpalaver | #AI #CloudComputing #Datacenter #Cybersecurity #Telekommunkation #Infrastruktur · Wie PKI in vier Schritten bereit für das Quantenzeitalter wirdDas Quantenzeitalter ist nahe. In wenigen Jahren schon werden Angreifern die ersten Quantencomputer mit solch hoher Rechenleistung zur Verfügung stehen,
Just spent some quality time figuring out why HTTPS requests with incorrect system time would fail - even though the time was between the certificate NotBefore and NotAfter.
OCSP stapling was the culprit. This adds a more strict "window of system time validity" due to the way the protocol works. The obvious reason for the smallish window is to allow caching, while reducing the replay attack possibilities. Thus, the system clock can't be backdated more than a few hours, regardless of certificate NotBefore. The system time can be more off towards the future.
In our use case, we don't need to worry about revocation and hence we will just kill OCSP use. With this, we will still have the limits set by the certificate NotBefore and NotAfter, but at least they're more predictable and somewhat laxer.
Nahezu jedes fünfte Online-Zertifikat birgt Sicherheitsrisiken
#Authentifizierung #Datenverschlüsselung #DigitalTrust @Keyfactor #OnlineZertifikat #PKI #PublicKeyInfrastructure #Schwachstelle
https://netzpalaver.de/2025/03/19/nahezu-jedes-fuenfte-online-zertifikat-birgt-sicherheitsrisiken/
Elektronische Signatur: Der Schlussstein des papierlosen Büros
@d_velop #Dokumentenmanagement #eID #eIDAS #elektronischeSignatur #Identität #PublicKeyInfrastructure #Signaturlösung @dvelop
https://netzpalaver.de/2025/03/06/elektronische-signatur-der-schlussstein-des-papierlosen-bueros/
Warum digitale Zertifikate manuell weder effektiv noch effizient gemanagt werden können
#Compliance #DigitaleZertifikate #IoT @Keyfactor #PKI #PKIasaService #PublicKeyInfrastructure #Zertifikatswildwuchs
Post-Quantum Cryptography: The Implications of Google’s Willow and Other Quantum Computers for Cybersecurity – Source: securityboulevard.com https://ciso2ciso.com/post-quantum-cryptography-the-implications-of-googles-willow-and-other-quantum-computers-for-cybersecurity-source-securityboulevard-com/ #rssfeedpostgeneratorecho #PostQuantumCryptography #publickeyinfrastructure #SecurityBloggersNetwork #CyberSecurityNews #SecurityBoulevard #quantumcomputing #Cryptography #articles #pki
CISO2CISO.COM & CYBER SECURITY GROUP · Post-Quantum Cryptography: The Implications of Google’s Willow and Other Quantum Computers for Cybersecurity – Source: securityboulevard.comSource: securityboulevard.com - Author: Paul Horn Quantum computing was long considered to be part of a distant future. However, it is quickly becoming
3 Best-Practices für einen erfolgreichen Zertifikats-Widerruf
#Cybersecurity @Keyfactor #PKI #PublicKeyInfrastructure #Security #Zertifikatswiderruf #Zertifizierungsstelle
https://netzpalaver.de/2024/11/01/3-best-practices-fuer-einen-erfolgreichen-zertifikats-widerruf/
Der Ausbau der eigenen Krypto-Agilität ist wichtiger denn je, wie der Digicert-Zertifikats-Widerruf belegt
#DigiCert #Domainvalidierung @Keyfactor #KryptoAgilität #PKI #PublicKeyInfrastructure #Security #Zertifikat
PKI und Zero-Trust
Podcast-Interview mit Andreas Philipp,
@Keyfactor
Wie fügt sich eine #PublicKeyInfrastructure in die Umsetzung einer #ZeroTrustArchitektur? Dieser Frage ging Netzpalaver im Remote-Interview mit Andreas Philipp, Senior Business Development Manager von Keyfactor, nach.
Via Spotify: https://podcasters.spotify.com/pod/show/netzpalaver/episodes/Interview-mit-Keyfactor---PKI-und-Zero-Trust-e2mmd8d
Public-Key-Infrastructure in der Automobilindustrie
#Authentizität #Automobilindustrie #Cybersicherheit #digitaleIdentität @Keyfactor #PKI #PublicKeyInfrastructure #PublicKeyInfrastruktur #Zertifikat
https://netzpalaver.de/2024/07/18/public-key-infrastructure-in-der-automobilindustrie/
Warum eine schlecht verwaltete PKI ein leichtes Ziel für Cyberangriffe ist
#Cybersecurity @Keyfactor #PKI #PKIManagement #PublicKeyInfrastructure #Security #Sicherheitsarchitektur #Verschlüsselung
Cyberark kauft Machine-Identity-Experten Venafi
@Cyberark #Identitätsmanagement #IdentitySecurity #IoT #MachineIdentity #Maschinenidentitätsmanagement #PKI #PublicKeyInfrastructure @Venafi
https://netzpalaver.de/2024/05/26/cyberark-kauft-machine-identity-experten-venafi/
Netzpalaver | #CloudComputing #Datacenter #Cybercrime #Telekommunkation #Infrastruktur · Cyberark kauft Machine-Identity-Experten VenafiCyberark gab bekannt, dass es eine Vereinbarung zur Übernahme von Venafi, einem führenden Unternehmen für maschinelles Identitätsmanagement, für 1,5
So, lots of post-quantum encryption algorithms might not be as secure as hoped for...
#cybersecurity #cryptography #publickeyinfrastructure
https://blog.cryptographyengineering.com/2024/04/16/a-quick-post-on-chens-algorithm/
A Few Thoughts on Cryptographic Engineering · A quick post on Chen’s algorithmUpdate (April 19): Yilei Chen announced the discovery of a bug in the algorithm, which he does not know how to fix. This was independently discovered by Hongxun Wu and Thomas Vidick. At present, th…
Studie zu PKI und Post-Quanten-Kryptographie verdeutlicht wachsenden Bedarf an digitalem Vertrauen
#Cybersecurity #Identität #ITSecurity @Keyfactor #Kryptographie #PKI #PostQuantenKryptographie #PublicKeyInfrastructure #Security #Vanson Bourne #Zertifikatsmanagement
Latest OpenPubkey Project Initiative Makes SSH More Secure – Source: securityboulevard.com https://ciso2ciso.com/latest-openpubkey-project-initiative-makes-ssh-more-secure-source-securityboulevard-com/ #IdentityandAccessManagement #SecurityBoulevard(Original) #rssfeedpostgeneratorecho #publickeyinfrastructure #ApplicationSecurity #CyberSecurityNews #SecurityBoulevard #Identity&Access #NetworkSecurity #Risk&Compliance #authentication #SocialFacebook #CloudSecurity #Cybersecurity #datasecurity
CISO2CISO.COM & CYBER SECURITY GROUP · Latest OpenPubkey Project Initiative Makes SSH More Secure - Source: securityboulevard.comSource: securityboulevard.com – Author: Michael Vizard The OpenPubkey project this week shared a mechanism for remotely logging into IT environments based on the OpenID Connect (OIDC) protocol that makes authentication using Secure Shell (SSH) certificates more secure. OIDC is a protocol that lets users log into websites or applications using email accounts or some other […]
Do current browsers still validate CRLs in enterprise PKI environments
https://security.stackexchange.com/questions/269162/do-current-browsers-still-validate-crls-in-enterprise-pki-environments
#publickeyinfrastructure #certificaterevocation
Information Security Stack ExchangeDo current browsers still validate CRLs in enterprise PKI environmentsI know that modern web browsers don't check CRLs for certificates from CAs in the default trust store anymore.
I also know that there are some exceptions for certificate validation when it comes to
SSL/x509 certificate/public key expiration
https://security.stackexchange.com/questions/269132/ssl-x509-certificate-public-key-expiration
#publickeyinfrastructure #certificatepinning #certificates #x509 #tls
Information Security Stack ExchangeSSL/x509 certificate/public key expirationI would like to know the process of how public keys/certificates are renewed for a website. I understand the concept of CA (Certificate Authority) chains, and how the public key/certificate for a s...
Over what fields is the X509 hash computed over? [duplicate]
https://security.stackexchange.com/questions/268498/over-what-fields-is-the-x509-hash-computed-over
#publickeyinfrastructure #certificateauthority #digitalsignature #certificates #tls
Information Security Stack ExchangeOver what fields is the X509 hash computed over?Is this how X509 certificates are verified to be valid?
The receiver receives the certificate
Look at the issuer of the cert, and find the public key of that CA (its hardcoded in the application o...
View public key(s) exchange during https handshake from the command line
https://security.stackexchange.com/questions/268495/view-public-keys-exchange-during-https-handshake-from-the-command-line
#publickeyinfrastructure #publickey #tls
Information Security Stack ExchangeView public key(s) exchange during https handshake from the command lineIt is possible to view the entire HTTPS session from start to end? Any command line I can run?
I am interested in understanding more about the exchange of the public key(s) in order to establish a ...