Google Cloud Storage is a highly scalable, secure, and durable object storage service designed to handle vast amounts of data for a wide range of applications. As part of the Google Cloud Platform, it offers robust infrastructure and seamless integration with other Google services, providing an optimal solution for storing and retrieving any amount of data. Whether you need to archive critical data, stream media content, or store massive datasets for analytics, Google Cloud Storage offers a versatile and reliable platform to meet your storage needs. One of the key features of Google Cloud Stor ..read more

Ensuring the security of online communications is essential and TLS certificates play a pivotal role in establishing trust and encrypting transactions between source and destination. Managing these certificates efficiently can be a challenging task, especially in a dynamic web environment with numerous endpoints. Some of those challenges include: Certificate Diversity: Websites often require various types of TLS certificates, including origin, client, and edge certificates in Cloudflare. Lack of Visibility: No centralized visibility of certificates distributed across various domains, leading ..read more

It is a widely acknowledged fact that quantum computing poses a grave threat to traditional cryptography. As we prepare for the post-quantum era, transitioning to quantum-safe cryptography is a critical action item for all organizations. However, upgrading the entire infrastructure to post-quantum cryptography (PQC) is a highly complex, resource-intensive process that may take years, depending on the number and types of systems and applications. One effective way to secure the infrastructure during this long transition is to use hybrid TLS certificates. These certificates provide a practical a ..read more

Microsoft Intune is a cloud-based Mobile device management (MDM) solution that helps organizations manage devices, including mobile devices, tablets, and laptops. In addition to standardizing endpoint configurations, it is responsible for providing configuration on how the endpoint can obtain a device/user certificate. These certificates are necessary for users and devices to prove their identity and authenticate against a remote server/application to use its services, such as WiFi authentication and enterprise VPN access. With the advent of modern technology and changes in post-COVID working ..read more

Google’s decision to distrust Entrust must not be seen solely from the point of CA failures and complacency. It is essential to take a broader look and understand the critical need for Crypto and CA-agility in preparing for future changes and threats. Last week, Google announced its decision to distrust public TLS certificates from Entrust CA following a trail of non-compliance issues. Starting November 1, 2024, Google Chrome will no longer trust SSL/TLS certificates issued by Entrust or AffirmTrust. Any website or application using an Entrust certificate issued after October 31, 2024, will be ..read more

Microservices and containers are changing the way businesses build, deploy, and manage their applications. Within a short span, these technologies have become the de facto standard for software development and distribution. Kubernetes, the open-source container orchestration platform, has also become synonymous with developing, scaling, and managing cloud-native applications and services in hybrid and multi-cloud environments. The widespread adoption of containers and Kubernetes has transformed the application landscape, powering modern use cases like Infrastructure as Code (IaC) and DevOps. H ..read more

In light of the decision Google Chrome made last week to distrust Entrust as a Certificate Authority (CA), this is a topic worthy of diving into. Google Chrome makes the decision to distrust a public CA based on evidence of non-compliance with industry standards and security practices. The investigation scrutinizes the CA’s certificate issuance processes and overall security practices, gathering evidence from transparency logs, forums, and public disclosures. This evidence is assessed against industry standards like the CA/Browser Forum’s Baseline Requirements, focusing on proper validation of ..read more

Crypto-Agility Required to Migrate to a New Certificate Authority (CA) Seamlessly and Highlights Need for Post-Quantum Cryptography (PQC) Readiness This week Google announced that the Google Chrome browser will no longer trust TLS certificates issued by the Entrust Certificate Authority (CA) starting November 1, 2024. Certificates issued by Entrust before October 31, 2024 will remain trusted until their expiry date. In its statement explaining the rationale behind this decision, Google emphasized the critical role Certificate Authorities play in internet security and the importance of CAs assu ..read more

HashiCorp Vault is a robust and versatile open-source solution for comprehensive secrets management and data protection. At its core, HashiCorp Vault excels in securely storing and managing sensitive information, employing dynamic secrets to minimize the risk of long-lived credentials. Its flexible authentication methods, ranging from tokens and LDAP to username/password, empower organizations to implement strong identity management. HashiCorp Vault’s dynamic secrets engines, such as those for databases and AWS, offer on-the-fly credential generation, enhancing security by minimizing exposure ..read more

Rising cyber threats mean more chances for managed security service providers. Gartner forecasts global spending on security and risk management to reach $215 billion in 2024, up 14.3% from 2023’s $188 billion. Additionally, Gartner forecasts that spending on security services including consulting, IT outsourcing, implementation and hardware support will total $90 billion in 2024, an 11 percent increase from 2023. Security services are expected to represent 42 percent of total security and risk management end-user spending. MSP vs. MSSP Typically, an MSP offers comprehensive IT operations and ..read more