With code signing cyber-attacks on the rise, certificate legitimacy is a growing concern. Digital certificates are a core tenet of security, and when mis-issue events occur, the standards of trust that businesses expect from their software and CA providers is fractured.
The importance of iron-clad, encrypted and code signed certificates, combined with a growing number of digital identities within the corporate network, means that gaining complete visibility to all certificates is fundamental to an organization’s over-arching security strategy. Whether you’re a global software provider, a certificate authority (CA), or a business that relies on software consumption and CA vendors, a mass certificate revocation event is expensive and inconvenient.
More recently, GoDaddy, Apple and Google announced operational errors that caused the revocation of more than a million digital certificates as a result of ECBCA misconfigurations: ECBCA is an open source software package commonly used by software and hosting companies to digitally sign code, secures emails and protect websites. While these particular events didn’t trigger cause for security concern, they are a major operational…