What Is IP Spoofing? Scott Carter Tue, 08/09/2022 - 16:50 7351 views What is IP Spoofing? A quick definition of IP spoofing is that it is the creation of Internet Protocol (IP) packets which have a modified source address in order to either hide the identity of the sender, to ... Read More

What Is the Difference between Root Certificates and Intermediate Certificates? Scott Carter Mon, 09/05/2022 - 16:07 74197 views What are certificate chains? A certificate chain is a list of certificates (usually starting with an end-entity certificate) followed by one or more CA certificates (usually the last one being a self-signed ... Read More

As the Cyber War Grows: Is It Time to Strike Back? Scott Carter Tue, 03/19/2019 - 20:23 Simply put, this is a very tense time for the cyber security industry. At this year’s RSA conference, Venafi wanted to see how security professionals are responding to cyber war threats and offensive ... Read More

Google, Apple, GoDaddy Mis-issue Over 1 Million Faulty Certificates Scott Carter Tue, 03/12/2019 - 18:30 The bottom line is that manual methods simply do not scale when you are forced to quickly replace larger numbers of certificates. Before you can revoke and reissue them, you need to find them. And ... Read More

Video Interview: How Secure Are Your Code-Signing Certificates? Scott Carter Mon, 02/04/2019 - 19:53 Scott Carter It’s no secret that code-signing certificates are a valuable commodity on the dark web. Last year, researchers uncovered what they suspect are e-shops have been set up to sell Microsoft Authenticode certificates to anonymous ... Read More

What Are Compression Side Channel Attacks? Scott Carter Fri, 02/01/2019 - 11:48 Compression side-channel attacks can be used to read some data by knowing only the size of the compressed data such as the CRIME, and BREACH attacks. To understand how compression side-channel attacks work, we must have a fair ... Read More

An Interview with CISO Billy Spears: Making a Case for Machine Identity Protection Scott Carter Mon, 01/28/2019 - 05:15 Robyn Weisman: What motivated you to invest in protecting machine identities? Did you experience any “Aha!” moment? Billy Spears: I didn’t have an “Aha!” moment per se. As the head of ... Read More

U.S. Department of Homeland Security Issues Emergency Directive on DNS Hijacking Attacks Scott Carter Wed, 01/23/2019 - 17:20 In the emergency directive, Krebs outlines in more detail how the DNS attacks are perpetrated: The attacker begins by compromising user credentials, or obtaining them through alternate means, of an account that ... Read More

Government Shutdown Impacts More than Security. It’s Taking a Toll on Federal Employees. Scott Carter Wed, 01/23/2019 - 07:55 Notwithstanding these impacts, the shutdown has had an even more significant effect on the lives of those federal employees who aren’t allowed to go work or aren’t receiving timely payment for ... Read More

BlackBerry Debuts Certificate System for AI-driven Cars Scott Carter Thu, 12/27/2018 - 09:10 BMW have been testing their autonomous cars on the streets of Germany since 2005. Volkswagen has been testing their Temporary Auto Pilot system since 2012. Those vehicles aren’t fully autonomous, but can go into an AI-driven mode ... Read More