Shows
Root Causes: A PKI and Security PodcastRoot Causes 588: It's Cryptographic Frogger from Here on OutIn this episode Tim explains that the transition to PQC is not just a change in cryptographic algorithms but also a fundamental shift in how we treat our cryptography. From here on out, IT systems need to be fundamentally crypto agile in a way we've never had to be before. Cryptographic Agility is the key to solve this problem.
2026-03-0409 min
Root Causes: A PKI and Security PodcastRoot Causes 588: It's Cryptographic Frogger from Here on OutIn this episode Tim explains that the transition to PQC is not just a change in cryptographic algorithms but also a fundamental shift in how we treat our cryptography. From here on out, IT systems need to be fundamentally crypto agile in a way we've never had to be before.
2026-03-0409 min
The Digital ExecutiveThe Future of Digital Trust: Tim Callan on Certificates, Cryptography, and Identity | Ep 1138In this episode of The Digital Executive, host Brian Thomas sits down with Tim Callan, Chief Experience Officer at Sectigo and one of the leading voices in SSL and PKI technology. With over 20 years shaping the standards of digital trust, Tim unpacks how the invisible infrastructure behind certificates and encryption keeps our digital world secure.Tim explores the coming shift toward shorter certificate lifespans, why automation is essential for enterprises, and how post-quantum cryptography (PQC) will reshape cybersecurity in the near future. He also dives into the evolution of digital identity—from enterprise systems to personal digital wa...
2025-11-0212 min
Root Causes: A PKI and Security PodcastRoot Causes 514: Diary of an Online FirestormTim describes how the addition of an item to the CABF face-to-face meeting agenda blew up into a panicked and outraged online thread. We discuss what a more functional response would have looked like.
2025-07-1612 min
Root Causes: A PKI and Security PodcastRoot Causes 514: Diary of an Online FirestormTim describes how the addition of an item to the CABF face-to-face meeting agenda blew up into a panicked and outraged online thread. We discuss what a more functional response would have looked like.
2025-07-1612 min
Root Causes: A PKI and Security PodcastRoot Causes 500: OMG! 500 Episodes of Root Causes!Wow. It's episode 500 of Root Causes. Jason and Tim talk about how the podcast has evolved in the past six years, how it remains consistent, and the updates we're making to keep being a valuable resource for our listeners.
2025-05-2920 minRoot Causes: A PKI and Security PodcastRoot Causes 500: OMG! 500 Episodes of Root Causes!Wow. It's episode 500 of Root Causes. Jason and Tim talk about how the podcast has evolved in the past six years, how it remains consistent, and the updates we're making to keep being a valuable resource for our listeners.
2025-05-2920 min
Root Causes: A PKI and Security PodcastRoot Causes 448: The Privilege of Being a Public CAWe go over Tim's September 2024 keynote speech at ENISA CA Day, "The Privilege of Being a Public CA."
2024-12-1725 minRoot Causes: A PKI and Security PodcastRoot Causes 448: The Privilege of Being a Public CAWe go over Tim's September 2024 keynote speech at ENISA CA Day, "The Privilege of Being a Public CA."
2024-12-1725 min
Root Causes: A PKI and Security PodcastRoot Causes 446: Sectigo Assumes Five CABF OfficesTim has stepped into the position of vice-chair of the CA/Browse Forum, and Sectigo now holds five chair or vice-chair positions in that body. We explain how leadership is chosen, the offices Sectigo holds today, and some of our vision for CABF in the next two years.
2024-12-1213 minRoot Causes: A PKI and Security PodcastRoot Causes 446: Sectigo Assumes Five CABF OfficesTim has stepped into the position of vice-chair of the CA/Browse Forum, and Sectigo now holds five chair or vice-chair positions in that body. We explain how leadership is chosen, the offices Sectigo holds today, and some of our vision for CABF in the next two years.
2024-12-1213 min
SysAdmin ShowSAS 058 – Apple’s 47-Day Certificate Proposal with Tim Callan
In this episode I discuss Apple’s proposal to lower SSL/TLS certificate max life from 398 days to 47 days. Tim Callan from Sectigo and the Root Causes podcast joins me.
Connect with Tim Callan:
LinkedIn: https://www.linkedin.com/in/tim-callan/
Root Causes Podcast: https://www.sectigo.com/root-causes-podcast
2024-11-2445 min
The Insurance Growth LabTim Metzner - Founder & CEO at Fireroad: Nurturing Your Culture, Retaining Top Talent, and Leaps of FaithTim Metzner is the Founder and CEO of Fireroad. Fireroad is a new kind of holding company, borrowing the best from venture studios and private equity models. They bring a balanced approach to managing the risk of early-stage ventures with the predictability of enduringly profitable businesses.Prior to Fireroad, Tim was a Founder of Ocean Accelerator, Differential, and Coterie Insurance. He’s also an active angel investor in 56 deals. In this episode, you’ll learn:How to nurture a great cultureHow to vet a co-founder you don’t knowWhe...
2024-08-2233 min
Corrective CultureTim Shieff - Way of the RopeThis week, Jake & Callan are joined by Tim Shieff. Born in Connecticut, USA, in 1988, Tim moved to Derby, England, in 1990. He developed a passion for creative movement early on, starting with breakdancing and moving into a professional parkour career, winning the 2009 Barclaycard World Freerun Championship and appearing on shows like MTV's Ultimate Parkour Challenge and Ninja Warrior. Facing chronic injuries in his late 20s, Tim delved into biomechanics, leading him to discover David Weck's Rope Flow in 2018.The boys chat all things from his early career with an intro to Tim's story as a parkour world champion...
2024-07-281h 02The Insurance Growth LabTim Robinson - CEO of AgencyBloc: Private Equity Transformations, Integrating Acquisitions, and Managing a Leadership TeamTim Robinson is the CEO of AgencyBloc. AgencyBloc is the leading Insurance Industry Growth Platform serving the health, benefits, and senior insurance space.Prior to AgencyBloc, Tim was the COO of WorkWave, COO of FMG Suite, and COO of Cii. All of those companies are private equity portfolio companies. In this episode, you’ll learn:How to conduct a daily leadership team huddle The lifecycle of a private equity portfolio company How to manage and integrate company acquisitions How private equity investment impacts business operations.The journey from VP to Chief...
2024-05-1637 min
Business of Tech: Daily 10-Minute IT Services InsightsWhat you need to know about TLS/SSL cert expiration with Tim Callan of SectigoAs Chief Experience Officer of Sectigo, Tim Callan leads efforts to optimize the customer journey across all aspects of the business. Tim has more than 20 years of experience as a strategic marketing and product leader for successful B2B software and SaaS companies, with 15 years of experience in the SSL and PKI technology spaces.Advertisers:https://gozynta.com/eureka/https://twingate.com/podcast/Do you want the show on your podcast app or the written versions of the stories? Subscribe to the Business of Tech: https://www.businessof...
2023-08-2615 min
Root Causes: A PKI and Security PodcastRoot Causes 299: 2023 RSA RecapThe 2023 RSA Conference just concluded. This week Tim recaps what he saw at the show and how it reflects on security industry trends. Our hosts discuss Zero Trust, PQC, blockchain, artificial intelligence, post-COVID tradeshow behavior, and more.
2023-05-0231 min
Root Causes: A PKI and Security PodcastRoot Causes 299: 2023 RSA RecapThe 2023 RSA Conference just concluded. This week Tim recaps what he saw at the show and how it reflects on security industry trends. Our hosts discuss Zero Trust, PQC, blockchain, artificial intelligence, post-COVID tradeshow behavior, and more.
2023-05-0231 min
Root Causes: A PKI and Security PodcastRoot Causes 294: Root Causes Honored by Webby AwardsThe Root Causes podcast has received a Webby Honoree award. Jason and Tim briefly celebrate and discuss the challenge of operating a niche, homemade podcast while being directly compared to professionally produced podcasts on mainstream topics from media companies. Plus, Tim's new Root Causes t-shirt.
2023-04-1309 minRoot Causes: A PKI and Security PodcastRoot Causes 294: Root Causes Honored by Webby AwardsThe Root Causes podcast has received a Webby Honoree award. Jason and Tim briefly celebrate and discuss the challenge of operating a niche, homemade podcast while being directly compared to professionally produced podcasts on mainstream topics from media companies. Plus, Tim's new Root Causes t-shirt.
2023-04-1309 min
Root Causes: A PKI and Security PodcastRoot Causes 250: 250 Episodes of Root Causes!It's Root Causes episode 250! In this episode Tim and Jason indulge themselves in podcasting about podcasting. Hear about setting up a podcast, choosing topics, why we don't rehearse, why we have so few guests, and how we reacted the first time someone asked us for a media kit.
2022-10-2626 minRoot Causes: A PKI and Security PodcastRoot Causes 250: 250 Episodes of Root Causes!It's Root Causes episode 250! In this episode Tim and Jason indulge themselves in podcasting about podcasting. Hear about setting up a podcast, choosing topics, why we don't rehearse, why we have so few guests, and how we reacted the first time someone asked us for a media kit.
2022-10-2626 min
Million Dollar Mortgage ExperienceEconomic Outlook from a Wealth Manager: Tim Callan on MDMEIn this episode of The Million Dollar Mortgage Experience Podcast, FundLoans CEO Jon Maddux interviews Tim Callan, financial advisor and co-founder of wealth management firm, Callan Capital. He started the company in 2007 right as the financial markets were imploding, but has since grown the firm to over $1B. During this Podcast, Jon and Tim discuss today's market, volatility, looming recession, inflation, unemployment, interest rates, the Federal Reserve, the inverted yield curve, how the US economy stacks up to the rest of the world, advice for mortgage brokers to build referral relationships with wealth managers, and starting a private wealth...
2022-10-2530 min
Chris Judd's Talk Ya Book PodcastTim CallanOn this week's episode of Talk Ya Book, Chris Judd welcomes Tim Callan from the hybrid credit fund, Pure Asset Management. Tim walks us through how his fund takes a unique approach to raising capital for clients and shares some insights into one of their positions, Comet Ridge (ASX:COI). Proudly presented by Honan Insurance (www.honan.com.au). See omnystudio.com/listener for privacy information.
2022-10-2014 minRoot Causes: A PKI and Security PodcastRoot Causes 238: Tim's Big Phishing AdventureIn a personally unprecedented occurrence, Tim's identity as a Sectigo executive is being used in a "waterholing" phishing scam intended to raid job seekers' bank accounts. We describe what is going on, how we found out, and the challenges in combatting such an attack.
2022-08-1516 min
Root Causes: A PKI and Security PodcastRoot Causes 238: Tim's Big Phishing AdventureIn a personally unprecedented occurrence, Tim's identity as a Sectigo executive is being used in a "waterholing" phishing scam intended to raid job seekers' bank accounts. We describe what is going on, how we found out, and the challenges in combatting such an attack.
2022-08-1516 minRoot Causes: A PKI and Security PodcastRoot Causes 197: Tim's Digital HaircutIn this episode our hosts describe the extreme degree to which all business has become digital business, even the most offline businesses you can think of, including food delivery, in-restaurant dining, bricks-and-mortar retail, and naturally, haircuts. We discuss the disparate, interconnected systems required to make this happen and the fragility of this new digital world.
2022-01-0711 min
Root Causes: A PKI and Security PodcastRoot Causes 197: Tim's Digital HaircutIn this episode our hosts describe the extreme degree to which all business has become digital business, even the most offline businesses you can think of, including food delivery, in-restaurant dining, bricks-and-mortar retail, and naturally, haircuts. We discuss the disparate, interconnected systems required to make this happen and the fragility of this new digital world.
2022-01-0711 min
The Casual Fan podcastEpisode 55 (#55 White Chocolate) - Callan is missing after Cowboys lose, NBA and NFL. The OG's are back!The OG's are back and Tim and Manesh have put out an APB on Callan as he has gone missing since the Cowboys lost. We talk NBA and NFL. This is a quick one so give it a listen.
2021-11-1135 minThe Casual Fan podcastEpisode 53 (#53 Kyle Van Noy) - NBA is back (Ben Simmons isn't), NFL results and picks, Callan gets his ass muted and WWE talk.The boys are back for the first week of the NBA, NFL picks coming through as someone takes a 1 point lead. Some WWE talk that as usual Callan has stolen all his content from the godfather of wrestling ManChiLd himself. Callan finally returns from his sabbatical from life.
2021-10-271h 04
Root Causes: A PKI and Security PodcastRoot Causes 162: What Is Sideloading?In a recent interview Tim Cook took a strong stance against application sideloading as a danger to mobile devices. In this episode we explain sideloading, its potential dangers, and the underlying motivators behind the sideloading debate.
2021-04-2113 min
The Casual Fan podcast04/02/2021 - Callan joins to co-host as Timmy is away getting his ring.This week Manesh hosts the podcast as Tim is away doing adult things. Callan rejoins the podcast to co-host with Manesh and the boys talk all about whether the All-Star game should go ahead. We had some NBA marque matchups this past week and a good discussion of who we thought actually created the first superteam in the NBA and the boys delve into that. We obviously talk about the Superbowl and whether a win by Mahomes brings him into the upper echelon of QB's to ever play. Awards season is short like Jay Williams' career. Tim, have a...
2021-02-0448 minThe Casual Fan podcast28/01/2021 - Technical difficulties! Callan joins the podcast, Remembering Kobe, Connor knocked out, NBA, NFL and Awards baby!Technical Difficulties!!!! Run TMC is in the building with Timmy, Manesh and Coupla Teams Callan. We are talking whether Simmons is overrated and remembering Kobe. Aaron Rodgers, overrated or is he a GOAT candidate? Someone wake up the sleeping Irishmen because we all have hot takes on Connor. Tim’s AOL dial up is playing up but we try to have some semblance of an Awards season. All that and more on the most technical difficulties podcast of January 21.
2021-01-291h 39
The Hoffman PodcastS2E14 Tim Callan - A Journey Through Grief to New LoveListen in as Tim Callan shares his amazing journey through deep grief after the death of his wife, to find new love on the other side. Tim speaks of his experience of the power of grief willingly and fully met. He also tells us of the power of the Hoffman Process to open our hearts to the life that our Spiritual Self wants us to live.
Tim shares that if he hadn’t been willing to walk through it all, his life would have been “an incomplete life.” Listen closely as he tells how he invited grief to tak...
2021-01-2138 min
Root Causes: A PKI and Security PodcastRoot Causes 139: Exposed Private Keys in CSR SubmissionsPublic CAs recently have discovered a repeated error whereby certificate subscribers accidentally include the private key along with CSR submissions. Our hosts break down this phenomenon and its implications.
2021-01-0310 min
Root Causes: A PKI and Security PodcastRoot Causes 138: IoT Cybersecurity Improvement Act of 2020A new US law called the IoT Cybersecurity Improvement Act of 2020 creates security requirements for IoT devices sold into the US government. Join us as we explain these new requirements and why this law's reach is likely to extend further than the US governmental procurement process.
2020-12-2713 min
Root Causes: A PKI and Security PodcastRoot Causes 137: SolarWinds Supply Chain Attack and Digital IdentityThe SolarWinds Orion supply chain attack is making headlines throughout the tech press. This sophisticated attack includes some unusual manipulations of digital identity and certificates. In this episode we explain how certificates, keys, and identity play into the SolarWinds exploit.
2020-12-2130 min
Root Causes: A PKI and Security PodcastRoot Causes 136: 2020 Lookback - Quantum Safe CertificatesIn the third of our year-end lookback episodes, we discuss 2020's progress in the quest for quantum-safe encryption. This includes narrowing the NIST candidate list down to fifteen algorithms, the availability of test hybrid certificates, and the trouble with long-lived IoT devices. Our hosts predict what 2021 will look like for quantum-safe certificates.
2020-12-1714 min
Root Causes: A PKI and Security PodcastRoot Causes 135: The Heartbleed VulnerabilityIn April 2014 a software vulnerability called Heartbleed was discovered in OpenSSL. Heartbleed made it possible for attackers to send commands to web servers and steal their private keys. Certificate subscribers around the world had to scramble to patch their servers and replace certificates by the millions. Guest Nick France joins us to explain this vulnerability, its consequences, and whether or not a Heartbleed-like vulnerability could occur today.
2020-12-1424 min
Root Causes: A PKI and Security PodcastRoot Causes 134: 2020 Lookback - SASE and Zero Trust Architecture2020 was a big year for SASE (Secure Access Service Edge). Our hosts define SASE, ZTNA (Zero Trust Network Architecture), and SDP (Software Defined Perimeter). Our hosts discuss how these technology principles gained momentum in 2020 and why they are poised for continued growth in 2021.
2020-12-0923 min
Root Causes: A PKI and Security PodcastRoot Causes 133: 2020 Lookback - COVID-19In 2020 the COVID-19 pandemic changed the way we work. IT departments had to gear up for near-ubiquitous work-from-home (WFH) requirements while maintaining productivity and security. Our hosts talk about the pandemic's affect on employee authentication and access, Zero Trust, IT enablement of retail, immunity passports, and more.
2020-12-0724 min
Root Causes: A PKI and Security PodcastRoot Causes 132: Examining MFA Through Soft TokensIn our ongoing examination of MFA, our hosts examine authentication through soft-token OTP (one-time passcode). They go over the potential benefits and pitfalls of soft tokens, and compare them to SMS tokens and hard tokens.
2020-12-0416 min
Root Causes: A PKI and Security PodcastRoot Causes 131: Apple OCSP Slowdown ExplainedThe recent release of Apple's Big Sur OS appears to have driven a temporary slowdown in the company's OCSP responders, affecting code updates across all Apple operating systems. Guest Nick France joins us to explain what appears to have happened and why.
2020-11-2917 min
Root Causes: A PKI and Security PodcastRoot Causes 130: How to Get Rid of Password BreachesMassive password breeches have been so repeatedly prevalent for so many years that as an industry and a society we've just started to accept them as a fact of life. In this episode we discuss the weaknesses of passwords as a strategy and why they nonetheless are so common even today. We describe the roadmap for eventually weeding out passwords from most systems.
2020-11-2415 min
Root Causes: A PKI and Security PodcastRoot Causes 129: Examining MFA Through Hard TokensHard tokens are one of the oldest multi-factor authentication (MFA) form factors there is, and still in use today. In the latest in our series of explorations of MFA strategies, we examine the strengths and weaknesses of hard tokens as an MFA strategy.
2020-11-1915 min
Root Causes: A PKI and Security PodcastRoot Causes 128: What Is Total Certificate Agility?First we had crypto agility, which is how we ensure our cryptography stays current with the needs of security. Expanding on this concept, industry leaders are now looking at certificate agility, which is building our systems so that all certificates are known, current, and immediately replaceable. Our hosts explain certificate agility, why it's important, and what you need to do to achieve it.
2020-11-1214 min
Root Causes: A PKI and Security PodcastRoot Causes 127: What Does a Chief Compliance Officer at a Public CA Do?Our co-host Tim Callan has changed his title to Chief Compliance Officer. Join him and co-host Jason Soroko as they discuss what compliance means at a public Certificate Authority (CA) like Sectigo and what the Chief Compliance Officer does.
2020-11-0514 min
Root Causes: A PKI and Security PodcastRoot Causes 127: What Does a Chief Compliance Officer Do at a Public CA Do?Our co-host Tim Callan has changed his title to Chief Compliance Officer. Join him and co-host Jason Soroko as they discuss what compliance means at a public Certificate Authority (CA) like Sectigo and what the Chief Compliance Officer does.
2020-11-0414 min
Root Causes: A PKI and Security PodcastRoot Causes 126: IoT RansomwareNew research shows how ransomware attacks could be launched against IoT devices. Our hosts are joined by Alan Grau to understand these attacks and what can be done to defend against them, including technical controls such as strong identity and embedded firewalls.
2020-10-2818 min
Root Causes: A PKI and Security PodcastRoot Causes 125: Digital Identity Versus IAMDigital certificates and PKI provide digital identity and access. Identity and Access Management (IAM) is a huge technology category featuring major players like Okta, DUO, and Ping Identity. And despite the fact that they feature a lot of the same words in their descriptions, these two categories are entirely different spaces that do entirely different things. In this episode we explain the difference between digital identity certificates and IAM platforms and how they fit in together.
2020-10-0811 min
Root Causes: A PKI and Security PodcastRoot Causes 124: Biometric MFAAs part of our ongoing series on the pros and cons of various forms of multi-factor authentication (MFA) in this episode we explore biometrics. Our hosts discuss their strengths and weaknesses and the idea that biometrics are more about proof of possession than identity authentication.
2020-10-0510 min
Root Causes: A PKI and Security PodcastRoot Causes 123: Asymmetric Versus Symmetric EncryptionOne of the cornerstones of the success of PKI and digital certificates is their dependence on an asymmetric encryption model. In this episode our hosts explain the difference between asymmetric and symmetric secrets and how they fit into encryption.
2020-10-0121 min
Root Causes: A PKI and Security PodcastRoot Causes 122: Passwordless Authentication for Apple OSOur hosts are joined by Joel Rennich of Jamf to talk about passwordless authentication and access for various Apple platforms. Joel explains the variety of user experiences that can qualify as passwordless access, with an eye to the specific needs and opportunities for Apple devices.
2020-09-2832 min
Root Causes: A PKI and Security PodcastRoot Causes 121 : What Is a Hardware Security Module?A Hardware Security Module, or HSM, is a piece of hardware that securely stores secret material such as cryptographic keys. Join our hosts as they explain terms like HSM, Trusted Platform Module (TPM), Secure Enclave, TrustZone, and Hardware Secure Element (SE).
2020-09-2114 min
Root Causes: A PKI and Security PodcastRoot Causes 120: PKI and SASESASE (Secure Access Service Edge) is a new term to describe the complexity of authenticating access across today's diverse and heterogeneous computing environments. Join our hosts as they discuss the role of digital identity and certificates in this paradigm.
2020-09-1819 min
Root Causes: A PKI and Security PodcastRoot Causes 119: What Is Crypto Agility?Security industry insiders sometimes use the phrase "crypto agility." In this episode our hosts define crypto agility - or cryptographic agility. They explain why crypto agility is more important than ever, why the pace of cryptographic change is going up, and what certificate subscribers can do to improve their crypto agility.
2020-09-1418 min
Root Causes: A PKI and Security PodcastRoot Causes 118: Quantum Apocalypse - What Is a Hybrid Certificate?As part of its quantum safe initiative, Sectigo is now offering its Quantum Safe Kit, which enables the creation of hybrid TLS certificates. In this episode our hosts are joined by guest Alan Grau to explain what hybrid certificates are, how they are essential to transitioning to quantum-safe crypto, and the ways enterprises can begin using them today.
2020-09-0723 min
Root Causes: A PKI and Security PodcastRoot Causes 117: Why Default Deny Matters to the CA/Browser ForumThis year the CA/Browser Forum has put considerable discussion into the concept of "default deny." It's a philosophy for how to interpret potential ambiguities in existing guidelines for public certificates, and how you land on the default-deny question can have a significant impact on how you interpret the rules. Join our hosts as they describe this debate and its potential impact on public certificates.
2020-09-0419 min
Root Causes: A PKI and Security PodcastRoot Causes 116: Ripple20 Exposes TCP/IP Vulnerabilities for IoTRipple20 is a recently announced set of documented vulnerabilities in the early Treck TCP/IP stack, a popular choice for early IoT devices. Our hosts are joined by guest Alan Grau, who explains the significance of these vulnerabilities, the difficulties in dealing with them, and how we can improve to avoid these problems in the future.
2020-08-3014 min
Root Causes: A PKI and Security PodcastRoot Causes 115: Signed HTTP Exchange (SXG) CertificatesAccelerated Mobile Pages, or AMP, is a Google standard for packaging web content for consistent and usable display on mobile devices. SXG certificates enable the display of the original publisher's authenticated URL in the mobile reader. Join us as we explain the potential benefits of SXG to readers and content publishers.
2020-08-2711 min
Root Causes: A PKI and Security PodcastRoot Causes 114: Is Quantum Computing a Threat to SHA-2?Quantum computers' threat to standardized encryption algorithms RSA and ECC has been much discussed. But what about our hashing algorithms? Do quantum computers pose a similar threat to SHA-2? Join our hosts as they discuss the difference between Shor's Algorithms and Grover's Algorithm, which applies to each part of cryptography, and how significant quantum computing will be for each.
2020-08-2111 min
Root Causes: A PKI and Security PodcastRoot Causes 113: What Is Certificate Pinning?Certificate pinning is the practice of coding software to demand the presence of a specific certificate brand or root in order to function correctly. Though once considered a legitimate security option, certificate pinning is widely discredited because it carries unacceptable certificate agility costs. Join our hosts as they explain what certificate pinning is, how it came about, and why nearly all developers should avoid certificate pinning today.
2020-08-1817 min
Root Causes: A PKI and Security PodcastRoot Causes 112: Introducing Sectigo Quantum LabsFor more than a year Sectigo has been providing the market with information to understand what we all must do to change our cryptography to prepare for quantum computers. Now Sectigo has announced Sectigo Quantum Labs, a destination for education on quantum-safe certificates (QSC) and our Quantum-Safe Kit, which allows enterprises to create their own hybrid quantum-safe certs. Join us as we articulate what Sectigo Quantum Labs has to offer you.
2020-08-1313 min
Root Causes: A PKI and Security PodcastRoot Causes 111: Secure Data InterconnectsDistributed data centers are extremely common in today's computing environments. Unencrypted replication of data across these centers leaves data open to theft. Nonetheless, existing systems and software leave that possibility open, and sometimes data replication occurs in the clear. Our hosts explain how this situation can come about and what to do about it.
2020-08-1012 min
Root Causes: A PKI and Security PodcastRoot Causes 110: Single-domain, Multi-domain, and Wildcard SSL CertificatesWhen you obtain an SSL certificate, you can choose between single-domain, multi-domain, and wildcard certificates. Join our hosts as they explain the different domain spaces available with TLS certificates and the pros and cons of each approach.
2020-08-0623 min
Root Causes: A PKI and Security PodcastRoot Causes 109: Examining MFA Through Phone-based SMSSMS-based one time password (OTP) is a very commonly used form of multi-factor authentication (MFA). That's because it's fast and inexpensive to roll out to users. Unfortunately it is deeply vulnerable to a set of well-defined attacks. In this episode our hosts explain why SMS MFA became so popular and how this outdated MFA scheme fails to provide the security expected by those who use it.
2020-07-2915 min
Root Causes: A PKI and Security PodcastRoot Causes 108: Why Do Certificates Expire?Root expirations occasionally make headlines by breaking systems, but it's a fact that certificates are expiring every day, each a potential outage waiting to happen. So why do certificates expire in the first place? Join our hosts as they discuss the reasons for expiration, its advantages over other mechanisms like revocation, and the right amount of time for a certificate to last.
2020-07-2419 min
Root Causes: A PKI and Security PodcastRoot Causes 107: IoT Security Baseline Requirements from ETSIETSI has published its new Baseline Requirements for consumer IoT device security, which includes a number of provisions directly related to encryption, strong identity, and device software integrity. Join our hosts as they describe the PKI-related portions of the new ETSI requirements and why they are valuable for security.
2020-07-2020 min
Root Causes: A PKI and Security PodcastRoot Causes 106: Massive Intermediate Certificate Distrust Is on the WayA recently identified and widespread configuration error has created a situation where, with the wrong attack on certain public roots, certificates could become essentially unrevokable. As a consequence, 14 public CAs will have to revoke their OCSP certificates, many of which are also intermediates, and permanently discontinue use of their keys. That leaves millions of active TLS, S/MIME, code signing, and document signing certificates in need of immediate replacement or they will be distrusted. Join our hosts as they explain what the problem is and what messy cleanup will be required to address these problems.
2020-07-1426 min
Root Causes: A PKI and Security PodcastRoot Causes 105: TOR, How and WhyMany people know that TOR is a browser used for anonymous online activity, but most of us don't know much more than that. In this episode our hosts explain how the TOR network operates, what its potential value is, and how TOR compares to a VPN.
2020-07-0820 min
Root Causes: A PKI and Security PodcastRoot Causes 104: 21 PKI Pitfalls to AvoidOur hosts often discuss the idea of errors in PKI implementations and the potential negative consequences for organizations. In this episode they categorize twenty-one PKI pitfalls to avoid according to five main categories of error: certificate problems, deployment problems, systemic security problems, governance problems, and visibility problems. Join us for a crisp description of these twenty-one pitfalls so you can be on the lookout for them.
2020-07-0628 min
Root Causes: A PKI and Security PodcastRoot Causes 103: Work-from-Home IT Impact StudyThe need to suddenly enable nearly 100% of information workers for secure, productive work-from-home was a curve ball for IT departments to deal with around the world. Sectigo recently released the results of a commissioned survey of 500 IT professionals about the impact of widespread WFH requirements on IT departments, roadmaps, security, and employee productivity. In this episode our hosts go over the biggest findings from this study.
2020-06-2916 min
Root Causes: A PKI and Security PodcastRoot Causes 102: Lawful Access to Encrypted Data ActA newly proposed US Senate bill called the Lawful Access to Encrypted Data Act would require service providers and device manufacturers to provide access to encrypted data based on a valid warrant. In this episode our hosts explain the bill's contents and some of the opportunities and pitfalls it presents.
2020-06-2615 min
Root Causes: A PKI and Security PodcastRoot Causes 101: Google RCS Chat with End-to-End EncryptionGoogle has just announced the coming availability of end-to-end encryption for its chat service. In this episode our hosts describe the spectrum of potential protection within the capabilities we call end-to-end encryption, including forward secrecy and durability of keys.
2020-06-2114 min
Root Causes: A PKI and Security PodcastRoot Causes 100: OpenSSH Deprecates SHA-1Once widely used, SHA-1 is considered insecure today and has been deprecated from the most common PKI use cases. OpenSSH recently provided a roadmap to its eventual deprecation of SHA-1. Join our hosts as they discuss the long, complex process of sunsetting a widely used cryptographic practice, the factors that contribute to these practices continuing beyond their secure lifespans, and the importance of crypto agility.
2020-06-1511 min
Root Causes: A PKI and Security PodcastRoot Causes 99: AddTrust Root Expiration ExplainedThe recent expiration of Sectigo's AddTrust legacy root caused some systems to stop working and forced some admins to keep working over the weekend until all was fixed. In this episode we explain roots, root expirations, why they are a non event for most users, and why sometimes an expiration can be more impactful.
2020-06-1228 min
Root Causes: A PKI and Security PodcastRoot Causes 98: DMARC and Verified Mark Certificates for EmailA new kind of identity certificate is coming that will enable businesses to include their logos in official email they send in order to improve customer confidence and protect against phishing. It is called a Verified Mark Certificate (VMC) and is built upon the DMARC standard, which controls which senders are allowed to send email using any given From address. In this episode our hosts explain VMCs and DMARC and how they will be used and then discuss where they fit in with S/MIME email certificates.
2020-06-0812 min
Root Causes: A PKI and Security PodcastRoot Causes 97: Firefox to Deprecate Support for FTPMozilla has announced its intention to remove support for FTP from the Firefox browser, citing concerns about security and the degree of effort required to keep this functionality current. Join our hosts as they discuss this announcement and its potential effects as well as the considerations that go into choosing when to drop support for outdated, unpopular, or sub-optimal capabilities in technology products.
2020-06-0411 min
Root Causes: A PKI and Security PodcastRoot Causes 96: Signal May Leave the USA to Protect Its End-to-End EncryptionCongress's proposed EARN IT act has many industry observers worried about its potential effect on the integrity of encrypted communication. In recent news, secure communication app Signal has floated the idea of relocating outside the United States if that's what's required to retain its ability to offer end-to-end encryption without spying eyes interfering.
In this week's episode, we discuss this announcement and related issues surrounding the keeping of digital secrets and encryption.
2020-06-0117 min
Root Causes: A PKI and Security PodcastRoot Causes 95: Cryptographic Key VaultingFor PKI to be secure, private keys need to remain private. In this episode we explain "vaulting" for keys or other shared secrets. We touch on the vulnerabilities that secrets vaulting fights against and the common use cases for vaulting.
2020-05-2812 min
Root Causes: A PKI and Security PodcastRoot Causes 94: Revocation Checking Through OCSP and CRLOne essential portion of the certificate lifecycle is the ability to revoke certificates. Public SSL certificates use a pair of mechanisms to communicate this revocation status to client machines, CRL and OCSP. In this episode we explain how these mechanisms work and some of their strengths and challenges.
2020-05-2623 min
Root Causes: A PKI and Security PodcastRoot Causes 93: Videoconferencing PhishingWith the global workforce's massive shift to work-from-home, a clever new set of opportunistic social engineering attacks has sprung up to take advantage of our unfamiliarity with our new communication and collaboration applications and processes. In this episode our hosts describe these new attacks and what IT departments can do to combat them.
2020-05-2114 min
Root Causes: A PKI and Security PodcastRoot Causes 92: COVID-19 Immunity PassportsAs we plan our societal return to normalcy, a number of people and groups are discussing the concept of an electronic "immunity passport" that individuals can possess if they are known to be immune to COVID-19 (possibly through vaccination or prior infection). Today our hosts discuss the requirements for such an immunity passport, some of the opportunities and challenges in putting this kind of system in place, and how existing schemes and systems may fit into an immunity passport initiative.
2020-05-1821 min
Root Causes: A PKI and Security PodcastRoot Causes 91: Rabobank Banking App OutageAustralia's Rabobank recently experienced an outage preventing its Android banking app from connecting to its servers. The root cause? An expired certificate. In this episode our hosts explain what happened and how it could have been avoided. They also discuss certificate pinning, how it came to be used with apps like this one, and its disadvantages.
2020-05-1312 min
Root Causes: A PKI and Security PodcastRoot Causes 90: An Analysis of Distributed PKIDistributed PKI is a new approach, with advocates saying it will eliminate many weaknesses they perceive with traditional, hierarchical PKI architecture. Guest Alan Grau joins our hosts at they explain how distributed PKI works, describe its proclaimed benefits, and take a hard look at whether or not these claims hold up.
2020-05-1024 min
Root Causes: A PKI and Security PodcastRoot Causes 89: PKI's Role in Zero Trust"Zero Trust" is an IT security philosophy that maximizes protection from threats by tightly controlling access and permissions for every individual, device, and process in the organization's environment. Learn how digital identity and certificates play a key role in operating a secure Zero Trust strategy.
2020-05-0720 min
Root Causes: A PKI and Security PodcastRoot Causes 88: PKI and BlockchainMany observers notice similarities between PKI and blockchain, including their applicability to secure digital systems and their ability to enable authentic information and non-repudiation in an electronic environment. Join our hosts and expert guest Alan Grau as they go over the similarities and differences between PKI and blockchain, explain the qualities of a good use case for each, and describe how they can complement each other.
2020-05-0413 min
Root Causes: A PKI and Security PodcastRoot Causes 87: Zoom's (Not) End-to-End EncryptionWith lockdowns and working from home the norm, a great deal of attention has been paid to video conferencing technology. In particular, Zoom has claimed to offer end-to-end encryption while in fact it does not, making headlines across media of all sorts. In this episode our hosts explain what end-to-end encryption is and why the distinction is important for a service like Zoom.
2020-04-3017 min
Root Causes: A PKI and Security PodcastRoot Causes 86: SSH KeysSSH keys are essential for controlling access to production infrastructure. Our hosts are joined by repeat guest David Colon to discuss how SSH keys are used in contemporary computing environments, what risks they carry with them, and tips for IT professionals to use SSH keys easily and securely.
2020-04-2718 min
Root Causes: A PKI and Security PodcastRoot Causes 85: Automotive Key Fobs and CryptographyRecent headlines have unveiled high profile attacks against automobile key fobs. Such an attack is potentially huge since successfully mimicking these fobs can yield complete access to an automobile's capabilities. Our hosts are joined by repeat guest Alan Grau as they describe the cryptographic architecture of a modern automotive key fob, how these attacks take place, and what automobile manufacturers can do about it.
2020-04-2316 min
Root Causes: A PKI and Security PodcastRoot Causes 84: What Is DNS over HTTPS?DNS over HTTPS is a capability whereby DNS lookups can be encrypted to defend against certain man-in-the-middle attacks as well as protecting information about web usage from being revealed to third parties. In this episode our hosts explain DNS over HTTPS, it potential uses, and how it works. They also explain some of the controversy and potential concerns that have been raised with this approach.
2020-04-2008 min
Root Causes: A PKI and Security PodcastRoot Causes 83: Quantum Apocalypse - Does COVID-19 Change the Z DateLock downs and work-from-home requirements have disrupted the efficiency of operations in all walks of industry, including academics and advanced computing research. In this episode our hosts debate if and how the pandemic's disruptive nature might change the date on which quantum computers are able to defeat today's encryption.
2020-04-1625 min
Root Causes: A PKI and Security PodcastRoot Causes 82: The Death of the Hard TokenPeople are working from home in unprecedented numbers, which means that companies need to find ways for them to connect securely. Some will consider hard tokens as an option. In this episode our hosts give a frank assessment of the difficulty that hard tokens present for the modern remote workforce, along with some of the other available options that are likely to serve the enterprise better.
2020-04-1316 min
Root Causes: A PKI and Security PodcastRoot Causes 81: What Is Embedded Firewall?Security for IoT devices depends not only on establishing strong identity mechanisms for devices and the services they connect to but also in ensuring the ongoing integrity of device operations. In this episode our hosts are joined by guest Alan Grau to explain what an embedded firewall is and how it aids security for connected devices.
2020-04-0614 minRoot Causes: A PKI and Security PodcastRoot Causes 80: The Pros and Cons of VPNsWith the sudden, meteoric increase in remote workers, many IT professionals are looking at VPN as a method of keeping them secure. Join our hosts as they discuss the advantages and disadvantages of VPNs, and what to look out for.
2020-04-0216 min
Enterprise Security Weekly (Video)Quantum Computing and IT - Tim Callan - ESW #160Tim Callan is the Senior Fellow at Sectigo. Quantum computing and what its arrival means for IT, traditional computing and infosecurity. TC expects that both architectures will live side by side, with traditional computing serving most tasks and quantum computing being employed for the specific operations where it offers improved efficiency. He will discuss expected outcome of quantum computing is that the world’s existing cryptographic infrastructure will have to change in a fundamental way and future encryption platforms need to be resistant to attacks not just from quantum computers but traditional computers as well. Visit https://ww...
2019-11-0928 min
Root Causes: A PKI and Security PodcastRoot Causes 35: Quantum Apocalypse - Mosca's Inequality, Mad Max, and MohawksQuantum computers have the potential to defeat the RSA and ECC encryption underlying our digital world. We must swap out these algorithms before quantum computers reach that stage of maturity. But how long to we have? Join our hosts Tim Callan and Jason Soroko as they explain how to calculate the ominously named "Z date," the possible consequences of missing that deadline, and potential hairstyles for a post-apocalyptic world.
2019-08-2919 min
Root Causes: A PKI and Security PodcastRoot Causes 35: Quantum Apocalypse - Mosca's Inequality, Mad Max, and MohawksQuantum computers have the potential to defeat the RSA and ECC encryption underlying our digital world. We must swap out these algorithms before quantum computers reach that stage of maturity. But how long to we have? Join our hosts Tim Callan and Jason Soroko as they explain how to calculate the ominously named "Z date," the possible consequences of missing that deadline, and potential hairstyles for a post-apocalyptic world.
2019-08-2919 minRoot Causes: A PKI and Security PodcastRoot Causes 17: Sectigo Acquires Icon LabsSectigo's recent acquisition of Icon Labs expands the company's capabilities in embedded OEM and device identity. Jason and Tim are joined by Icon Labs co-founder Alan Grau as our podcasters explore the needs and potential vulnerabilities for connected devices and the suite of technologies that can address these security requirements.
2019-05-1619 min
Root Causes: A PKI and Security PodcastRoot Causes 17: Sectigo Acquires Icon LabsSectigo's recent acquisition of Icon Labs expands the company's capabilities in embedded OEM and device identity. Jason and Tim are joined by Icon Labs co-founder Alan Grau as our podcasters explore the needs and potential vulnerabilities for connected devices and the suite of technologies that can address these security requirements.
2019-05-1619 min