Security News > 2020 > February > Digital certificates still cause unplanned downtime and application outages

Digital certificates still cause unplanned downtime and application outages
2020-02-14 05:00

"The complexity of managing those identities while keeping them securely connected to the business has created a critical trust gap - in many cases the keys and certificates designed to build trust are instead causing outages and security breaches."

Digital certificates and keys ensure authenticity across enterprise user, application and device identities.

A rise in security incidents: on average, organizations have experienced a Certificate Authority or rogue man-in-the-middle and/or phishing attack five times in the last 24 months, with a 40% likelihood of a MITM or phishing attack over the next 24 months; 73% of respondents admitted that digital certificates have and continue to cause unplanned downtime and outages.

Cryptography related security incidents undermine trust: 76% of respondents say failure to secure keys and certificates undermines the trust their organization relies upon to operate.

"In many cases, PKI remains a manual function with ownership split across IT and security teams. Growing connectivity has created an exposure epidemic. Without a clear PKI in-house or outsourced program owner and process to close critical trust gaps, the risk of outages and breaches will continue to rise."


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/KoDrvXh_hzY/