NEWS
DigiCert announces comprehensive discovery of cryptographic assets
Deepika Chauhan . “ This is becoming critical now , as IT leaders consider how to transition their cryptographic algorithms and certificates to quantum-safe standards .”
A recent Gartner report referenced cryptographic technologies as needing to evolve to cope with Quantum Computing as it increases the need for innovative technologies such as crypto-agility , postquantum cryptography and quantum key distribution .
To support increasing corporate need for cryptoagility , DigiCert has launched its next generation Discovery – a set of key capabilities in DigiCert Trust Lifecycle Manager enabling customers to build a centralized record of their cryptographic keys and certificates . This centralized view , when coupled with management and automated provisioning and renewal , is pitched as improving cryptoagility , reducing the time and resources needed to update algorithms , rotate keys and certificates and remediate threats .
“ The majority of organizations have not yet implemented a centralized crypto-management solution ,” said DigiCert Chief Product Officer
Trust Lifecycle Manager Discovery employs a broad set of methods for finding certificates within an organization , including integration with private CAs , such as AWS Private CA and Microsoft CA , integration with vulnerability management solutions such as Qualys and Tenable , integrations with web servers and load balancers and port-based scanning .
“ The integration of Qualys Vulnerability Management , Discovery and Response ( VMDR ) and DigiCert products enables our customers to manage and automate the cryptographic assets that they discover in their vulnerability scans ,” said Pinkesh Shah , Chief Product Officer , Qualys . “ This seamless integration enables companies to tightly couple their vulnerability management and cryptoagility strategies , improving their security posture and agility while reducing their cyber risk .
Thales and Intel collaborate to enhance trust in confidential computing .
Thales has confirmed a collaboration leveraging Thales CipherTrust Data Security platform to deliver end-to-end data security using confidential computing and trusted attestation backed by Intel Trust Authority .
This collaboration enables customers in highly regulated industries to secure workloads and protect data in use on-premises and in the cloud by performing computations in a cryptographically isolated hardwarebased Trusted Execution Environment ( TEE ).
Often , the cryptographic material verifying the TEE is managed by the cloud provider . The Thales solution effectively sidesteps this security issue by implementing separation of duties and puts the customer in control of the cryptographic key material . This approach eliminates the need to place complete trust in the cloud provider .
Todd Moore , Vice President of Data Security Products at Thales
safely , preserving privacy , confidentiality and compliance with regulatory requirements – only disclosing the results of processes performed .
Using trusted attestation from Intel , Thales ’ CipherTrust Data Security Platform can ensure sensitive workloads are never decrypted outside of an Intel TEE , Intel Trust Domain Extension ( TDX ) or Intel Software Guard Extension ( SGX ).
Todd Moore , Vice President of Data Security Products , Thales said the collaboration enables security conscious organisations to share data
Anil Rao , Vice President , Systems Architecture and Engineering and Office of the CTO , Intel , said : “ It is critical that enterprises retain control of their data protection and can confidently retain business agility while meeting compliance requirements . Together , Thales CipherTrust Data Security Platform , Intel Confidential Computing technologies and Intel Trust Authority provide customers the tools they need to do so .”
8 INTELLIGENTCIO NORTH AMERICA www . intelligentcio . com