KeyChest Blog

The State of PKI by AppViewX

Feb 18, 2020 2:01:40 PM / by Dan posted in certificate, https

0 Comments

AppViewX has conducted a research during the 2019 BlackHat conference asking cybersecurity professionals about their experience with PKI. I will give you an alternative exec summary.

Read More

Scalable Certificate Monitoring

Feb 14, 2020 9:53:10 AM / by Dan posted in letsencrypt, certificate, incident response

0 Comments

The enforcement of HTTPS by web browsers has introduced the pain of certificate management to small and medium businesses. My rules of thumb to make your life much easier.

Read More

C-level Cyber Security Report with Surprises

Feb 11, 2020 3:09:09 PM / by Dan posted in security, identity

0 Comments

Thales regularly publishes a Data Threat Report. It is created from responses provided by high-level execs so one wouldn't expect to find anything much of interest. But I was wrong, this time.

Read More

Secure By Design Will Not Work - The economics, stupid

Feb 9, 2020 1:12:04 PM / by Dan posted in certificate, identity, key management

0 Comments

Secure by design has been touted by governments as the way to solve the threat from insecure IoT devices. Here is a thought - it will never work because the focus is wrong.

Read More

KEYCHEST - Confidence In Your Online Business

Feb 6, 2020 10:36:21 AM / by Dan posted in https, keychest, key management

0 Comments

While KEYCHEST as a brand started as a straightforward expiry management service for Let's Encrypt, it has become a service with a rich set of features and there is still several technologies that wait for production deployment.

Read More

Quick Inspection of Web Endpoints (incl.SSL Expiry Check)

Feb 5, 2020 11:20:25 AM / by Dan posted in certificate, https, keychest

0 Comments

KeyChest is about keeping your business up and running by preventing the expiry of important web services - this is our goal. While it may be prudent to reach A+ rating in specialised audit tools (like SSL Labs), it will not prevent your business downtime 3 months later when your super secure ordering service expires.

Read More

Microsoft Teams - It's Not Just One Certificate

Feb 4, 2020 3:14:47 PM / by Dan posted in certificate, https, key management

0 Comments

A friend tagged me yesterday on LinkedIn with an update that Microsoft Teams - a team communication service, something like Slack - had gone down due to an expired certificate. How can this even happen?

Read More

HashiCorp Vault and PKI

Jan 28, 2020 2:57:45 PM / by Dan posted in certificate, key management

0 Comments

I started playing with HashiCorp Vault about 2 years ago and I really struggled to start with. I didn't expect the simplicity. Here are some of my notes that may help you touch the ground running.

Read More

How Let's Encrypt Works

Jan 24, 2020 8:33:05 AM / by Dan posted in letsencrypt, key management

0 Comments

You may well know that Let's Encrypt is a not-for-profit organization that provides SSL certificates for free. You may also know there is a huge number of "clients" - small software packages that you need to install on your server to start using Let's Encrypt. There is relatively little information about how it actually works.

Read More

"Unbreakable" Pen&Paper Encryption

Jan 16, 2020 9:56:45 AM / by Dan posted in security

0 Comments

A friend came over to our office one day (some years ago) and started talking about the possibility of giving people a chance to encrypt messages without computers, just with a pen and paper. They would write a message, encrypt it by hand, burn/eat/melt the encryption tool (i.e., a sheet of paper), and send the message.

Read More