The PKI Guy Blog

Certutil Bug in Windows Server 2016 Fails to Enumerate Issuance, Application Policies and OIDs

By Mark B. Cooper aka "The PKI Guy" | Apr 2, 2019

Recently one of our colleagues at nCipher in England related to us an issue reported by one of its customers using the certutil -verify -urlfetch command against an issued end-entity certificate on Windows Server 2016 (Build 1607). Running the command with no extra options, the command indicates a failure in the output (see figure below).…

Read More

PKI Glossary of Terms

By Mark B. Cooper aka "The PKI Guy" | Apr 1, 2019

Over the course of Public Key Infrastructure (PKI) design, implementation, and management, you will encounter many terms and acronyms that are defined in this document. The biggest part of the PKI implementation process is meeting with the stakeholders to ask and answer questions about where things are, how they work, what they struggle with today,…

Read More

The PKI Guy explores data encryption with Cindy Provin of nCipher Security

By Mark B. Cooper aka "The PKI Guy" | Mar 29, 2019

Q&A with Cindy Provin, CEO, nCipher Security TPG: There has been lots of news lately about your company being acquired by Entrust Datacard. What’s the latest with nCipher Security? CP: nCipher Security is a separate company within Thales. nCipher has been operating as a separate stand-alone business within Thales since January 2019.  We continue to…

Read More

Find @ThePKIGuy at RSA Conference 2019

By Kelly Stremel | Mar 1, 2019

We thought we would have a little fun at RSA this year, with a bit of sleuthing and a cool giveaway courtesy of The PKI Guy! Maybe you need a deep-dive into Public Key Infrastructure (PKI) and Active Directory Certificate Services (ADCS) to take your PKI skills to the next level? PKI Solutions will soon…

Read More

The PKI Guy drills down on PKI operations with Jeff Stapleton, author

By Mark B. Cooper aka "The PKI Guy" | Feb 13, 2019

Q&A with J.J. Stapleton, co-author of Security without Obscurity: A Guide to PKI Operations

TPG: What practical advice do you have for an organization considering deploying a PKI solution?

JS: There are various PKI architectures to consider. An internal private PKI deployed wholly within the organization, a hosted private PKI deployed at a third-party service provider, or an external public PKI operated by a commercial third party. Each has pros and cons…

Read More

The PKI Guy explores quantum-ready solutions with Bruno Couillard of Crypto4A

By Mark B. Cooper aka "The PKI Guy" | Jan 22, 2019

Q&A with Bruno Couillard, president and CTO, Crypto4A TPG: Your hardware security module (HSM) architecture team has an interesting history in the world of cryptography—can you tell us about that? BC: Many of our team, (including myself and the other three founders) have been consistently in the crypto and cybersecurity space for decades. Some of…

Read More

Object Identifiers (OID) in PKI

By Jake Grandlienard | Jan 8, 2019

A common question asked in our classes when we cover object identifiers (OIDs) is if there is a list of all the OIDs in a PKI environment. An object identifier is a string of decimal numbers that uniquely identifies an object. Since it isn’t a quick answer, I created this post to go a little…

Read More

7 Top Cybersecurity Trends in 2019

By Mark B. Cooper aka "The PKI Guy" | Dec 11, 2018

Forty-three percent of businesses were a victim of a cybersecurity breach in the past year, based on the recent Cyber Security Breaches Survey 2018. Organizations are continuing to do a less than stellar job protecting their users’ data from inadvertent exposure, such as exposed APIs, poor authentication, etc. In fact, 4.5 billion data records were…

Read More

What Types of Threats and Encryption Will We See in 2019?

By Kelly Stremel | Nov 26, 2018

What were the biggest cybersecurity concerns of 2018? What will the biggest technology trends be in 2019? Mark is interviewed about threats and encryption, taking a look at cybersecurity in 2018 and a look ahead to 2019. Check out the Q&A in Solutions Review.

Read More