Hi [[ session.user.profile.firstName ]]

IoT Security Made Easy: How to implement secure code signing and update delivery

As the number of IoT devices & apps continues to grow, so does the need for secure code signing & update delivery.

Connected devices are only as valuable as the operating systems and applications that they execute. The firmware, operating system and application update processes are highly sensitive and can be a prime target for attack. Hackers have used these methods and systems to spread malware that is completely ‘trusted’ and can avoid Next-Generation Antivirus (NGAV).

Until recently, there have been limited solutions available that can deliver a full secure end-to-end code signing and update delivery process for IoT use cases, forcing organizations to design and build their own home-grown solutions to fulfil their requirements.

Join this webinar to:
• Learn why code signing is important, in particular for IoT
• Understand how CodeSign Protect helps organisations today
• Explore a demo of a practical implementation of code-signing and secure update delivery for IoT
Recorded Jul 15 2020 29 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Eddie Glenn, Venafi and Nirmal Misra, Device Authority
Presentation preview: IoT Security Made Easy: How to implement secure code signing and update delivery

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Are your company’s code signing processes secure? Dec 2 2020 10:00 am UTC 60 mins
    Eddie Glenn, Sr. Product Marketing Manager & Tony Hadfield, Solution Architect, Venafi
    Could your organisation be at risk for code signing compromise?

    Recently, there’s been a lot of media coverage focused on the cyber attacks that exploit unprotected code signing credentials. Although code signing technology does a good job of ensuring code is trustworthy for end users to install and run, many companies don’t secure the processes that surround code signing. This lack of oversight can leave your company, and your customers, at risk.

    How much do you really know about your organizations’ code signing practices and policies?

    Many InfoSec professionals aren’t sure which practices and policies are actually being used, so there’s no way to measure or mitigate all of the risks connected with code signing.

    Or, maybe you and your organization understands code signing risks all too well but your processes are so cumbersome that your development teams either miss their release dates or bypass key parts of the processes to get their work done.

    No matter which kind of organization you work for, this webinar can help you:

    • Understand the specific risks associated with insecure code signing processes and how they affect your security posture and leave your customers at risk.

    • Know why scaling secure code signing processes can be challenging and understand what you need to deliver processes that are flexible and secure enough to meet the unique needs of your organisation.

    • Learn 5 best practices so you can deliver frictionless code signing processes your development teams will be happy to adopt.

    Register today and find out how Venafi Next-Gen Code Signing can help you move your code signing processes to the next level without slowing down your development teams.
  • Cheetahs, Covid-19, and Crypto Agility Nov 23 2020 4:00 pm UTC 60 mins
    Michael Thelander, Director of Product Marketing, Venafi
    Cheetahs have hovered on the brink of extinction for centuries. Covid-19 has recently decimated populations and economies alike. Intriguingly, both of these situations give us insight into the critical importance of “crypto agility” in modern network architectures.

    Crypto agility is the ability to quickly replace encryption certificates and keys in response to security events, such as certificate authority (CA) compromises, vulnerable algorithms, or cryptographic library bugs, without impacting the applications and services these systems support.

    Today, organisations rely heavily on TLS and it’s underlying cryptographic protocols to protect data, inside and outside their networks. Digital transformation is instantaneously multiplying the number of these connections. To ensure the security of encryption is maintained, businesses must know where their encryption certificates and keys are located and be able to quickly and securely replace them. Yet, most don’t even have a central inventory of these critical security assets.

    This session starts with an overview of the threats and risks that make crypto agility a requirement for all organisations, with real-world examples of exploits. The session will then provide a vendor-neutral actionable plan for achieving crypto-agility, with specific criteria that can be used to evaluate the cryptographic maturity of an organisation.

    Join this webinar to learn:

    1. Understand the threats facing machine identities of all types, but particularly TLS Certificates, and how “cryptographic agility” is foundational in creating a defense strategy
    2. See examples of where cryptographic or CA-related failures have led to machine identity compromise and then to breaches
    3. Learn the three fundamental foundations of crypto agility -- visibility, intelligence, and automation – and how these can be delivered and sustained through free tools, online services, and enterprise platforms

    Register Today!
  • Integrate, Authenticate and Accelerate: Fast IT Meets Strong Machine Identities Nov 11 2020 9:00 am UTC 48 mins
    Michael Thelander, Director of Product Marketing & Sandra Chrust, Sr. Product Marketing Mgr, Venafi
    Information security teams have long known that a robust process for creating and managing machine identities – especially X.509-based SSL/TLS certificates that enable machine-to-machine authentication and encryption – is fundamental to delivering secure applications. But they also know these methods tend to fall apart in a DevOps-driven world.

    DevOps teams can’t wait hours for an appropriate certificate to be delivered by the PKI team, not when new builds are being created every few seconds. They also can’t be expected to maintain and update the tens of thousands of certificate-enabled identities they create every day as containers, applications, and templates.

    What they can do is improvise. This often results in the creation of weak or misconfigured keys, improper or non-compliant certificates, and the short-circuiting of InfoSec policies. There is another way.

    In this talk, experts in machine identity and PKI (public key infrastructure) will show:
    1. How machine identities can be delivered as a fast “certificate-as-a-service” solution
    2. How they can be configured according to sound InfoSec policies
    3. How they can be integrated with existing DevOps tools such as Kubernetes, Ansible, and HashiCorp Vault

    Importantly, this can all be done within existing continuous integration and continuous delivery (CI/CD) toolchains, giving developers programmatic, automated TLS certificate issuance and provisioning. And it allows them to go faster: they no longer need to “hotwire” certificate management processes for each application or service.

    We’ll also show how large Global 5000 organizations have implemented:
    • A single source of “truth and control” for machine identities that manages X.509 certificates across both cloud providers and on-premise infrastructure
    • A “machine identity platform” that reduces security risks and prevents costly delays to the high-speed DevOps processes
    • A system that defends against increasingly dangerous cybersecurity threats
  • Prevent “Certificate Sudden Death”: VIA Venafi Stops Certificate-Related Outages Oct 27 2020 9:00 am UTC 45 mins
    Michael Thelander, Director of Product Marketing, Venafi
    Certificate-related outages, whether from expired or misconfigured or unknown TLS certificates, are the bane of digital transformation. Perfectly functioning applications and services can be rendered inoperable. Worse still the security controls you rely on, from traffic inspection devices to web application firewalls, can’t protect you when a certificate-related outage shuts them down.

    Venafi has helped over 360 global customers eliminate certificate-related site and service outages. The resulting approach, based on a deep understanding of people, processes and technology needed to achieve this outcome, is VIA Venafi, the Venafi Way. VIA Venafi gives our customers the Visibility, Intelligence and Automation they need to stop outages. It also provides the world’s only guarantee against certificate-related outages: the VIA Venafi No Outage Guarantee.

    In this session you will:
    • Learn about some of the most troublesome certificate-related outages that have led to site failures and breaches in recent years
    • Gain an understanding of what’s needed to ensure against outages
    • Understand Venafi’s eight-step process to stopping certificate-related outages
    • Learn about our VIA Venafi No Outage Guarantee
    • See how a platform that delivers Visibility, Intelligence and Automation can achieve this outcome in a way that is not only affordable and manageable....but achieves it in a way guarantees results

    Register today!
  • The Cost of Machine Identity Risk Oct 7 2020 9:00 am UTC 60 mins
    Dr. Eric Dallal, Sr. Scientist–Cyber, AIR, Kevin Bocek, VP of Threat Intelligence, Venafi
    The cyber risk landscape is changing rapidly, and many organizations haven’t extended basic identity and access management security controls to machine-to-machine communications, leaving gaps in their cybersecurity defenses.

    In this webinar, Eric Dallal, Senior Scientist–Cyber at AIR, and Kevin Bocek, Vice President of Threat Intelligence at Venafi, examine empirical evidence about the ways in which a weak machine identity protection plan can cost your organization.

    Join us to learn:
    - Why the security risks connected to machine identities are rising so quickly
    - Which companies are most at risk for machine identity protection losses
    - The three actions every organization can take now to protect their most sensitive data
    - Key conclusions
    - How we can quantify the cost of inaction

    Why is a strong machine identity protection program critical in today’s threat landscape? Register to learn more.
  • Five Cloud Catastrophes (and How to Avoid Them) Sep 29 2020 5:00 pm UTC 61 mins
    Michael Thelander, Director of Product Marketing and Dave Brancato, Sr. Tech. Mkt. Engineer, Venafi
    “Cloud migration” is no longer a question of IF or even WHEN. It’s a question of HOW FAST? Flexera’s annual State of the Cloud report shows us an ever-increasing migration velocity:

    • More than 50 percent of enterprise workloads are already in public clouds
    • 93 percent of enterprises have a multi-cloud strategy
    • Organizations use on average of 2.2 public and 2.2 private clouds

    Whether the reason is cost savings, flexibility, disaster response or to support a now fully perimeter-less world, we are all racing to the cloud. But what does this mean for the machine identities – especially TLS certificates and encryption keys – that are securing our digital transformation? What risks do we need to watch? How do we avoid some of the bad or unintended decisions that can cripple us?

    This webinar will help security architects, cloud architects and PKI teams secure and protect machine identities in even the fastest-moving environments. Join us to understand new risks and how to mitigate them and discover a “machine identities in the cloud” blueprint that helps you plan for a future that’s already here.
  • The Formula for Secure, Identity-Based Access Recorded: Aug 31 2020 30 mins
    Paul Cleay, Ecosystem Architect, Venafi, Kaylee Carlson, Product Mkt Mgr, JAMF, Kelsey Nelson, Sr. Prod. Mkt Mgr, Okta
    Employees and their devices are more mobile than ever. With the evolution of remote work, security requirements are increasingly difficult to meet. It’s essential that organizations have the tools in place to ensure only the right people, devices and apps are accessing secure networks and sensitive corporate data.

    In this webinar, The Formula for Secure, Identity-Based Access, presenters from Okta, Venafi and Jamf discuss how implementing a modern, “zero trust” approach to identity-based access satisfies security requirements without compromising the end-user experience.

    You'll learn:

    - What it takes to leverage a "never trust, always verify” security model
    - How to provide passwordless access to business-critical apps
    - Best practices for integrating with cloud-identity providers
    - How to add an extra layer of armor by securing physical devices

    Have questions about our webinar? Reach out to us at info@venafi.com or give us a call today.
  • Beware the dark side,use trusted machines & HSMs to support critical business Recorded: Aug 18 2020 47 mins
    Paul Cleary,Senior Solutions Engineer-Venafi and Juan Asenjo,Director of Products,Solutions and Partner Marketing-nCipher
    As organizations deploy more automated systems to run critical business, the demand for device and application (machine) identities is rapidly increasing. Protecting machine identities is critical to ensure integrity of operations and the security of data processed by machines.

    This webcast will examine the growing challenges faced by organizations when managing increasing volumes of machine identities. Our speakers will discuss how to implement automated orchestration of keys and certificates, describe best practices, and explain why a root of trust is vital for security and regulatory compliance.

    Join the webcast and learn:
    • What are the main challenges managing machine identities
    • How to enable trust in machines supporting critical business
    • Why a root of trust is required for high assurance security

    This webinar is for you if you are responsible for:
    • Managing digital transformation and cloud migration
    • Overseeing security best practices in your organization
    • Auditing and ensuring your organizational compliance
  • Five Cloud Catastrophes (and How to Avoid Them) Recorded: Jul 28 2020 61 mins
    Michael Thelander, Director of Product Marketing and Dave Brancato, Sr. Tech. Mkt. Engineer, Venafi
    “Cloud migration” is no longer a question of IF or even WHEN. It’s a question of HOW FAST? Flexera’s annual State of the Cloud report shows us an ever-increasing migration velocity:

    • More than 50 percent of enterprise workloads are already in public clouds
    • 93 percent of enterprises have a multi-cloud strategy
    • Organizations use on average of 2.2 public and 2.2 private clouds

    Whether the reason is cost savings, flexibility, disaster response or to support a now fully perimeter-less world, we are all racing to the cloud. But what does this mean for the machine identities – especially TLS certificates and encryption keys – that are securing our digital transformation? What risks do we need to watch? How do we avoid some of the bad or unintended decisions that can cripple us?

    This webinar will help security architects, cloud architects and PKI teams secure and protect machine identities in even the fastest-moving environments. Join us to understand new risks and how to mitigate them and discover a “machine identities in the cloud” blueprint that helps you plan for a future that’s already here.
  • IoT Security Made Easy: How to implement secure code signing and update delivery Recorded: Jul 15 2020 29 mins
    Eddie Glenn, Venafi and Nirmal Misra, Device Authority
    As the number of IoT devices & apps continues to grow, so does the need for secure code signing & update delivery.

    Connected devices are only as valuable as the operating systems and applications that they execute. The firmware, operating system and application update processes are highly sensitive and can be a prime target for attack. Hackers have used these methods and systems to spread malware that is completely ‘trusted’ and can avoid Next-Generation Antivirus (NGAV).

    Until recently, there have been limited solutions available that can deliver a full secure end-to-end code signing and update delivery process for IoT use cases, forcing organizations to design and build their own home-grown solutions to fulfil their requirements.

    Join this webinar to:
    • Learn why code signing is important, in particular for IoT
    • Understand how CodeSign Protect helps organisations today
    • Explore a demo of a practical implementation of code-signing and secure update delivery for IoT
  • Protecting Advanced Cloud and Multicloud Environments with Venafi Recorded: Jul 7 2020 40 mins
    Dave Brancato, Sr. Tech Mkt.Engineer & Sitaram Iyer, Global Principal Architect, Venafi
    High-pace business demands and the resulting need for application modernization is changing how we think about security in multi cloud computing environments. Learn how to leverage Venafi cross functionally with native tooling to secure machine identities in AWS, Azure and GCP.
  • Automating Machine Identities with DevOps Workflows Recorded: Jun 23 2020 45 mins
    Jean-Yves Provost, Director, Solutions Architect & Carl Bourne, Sr. Solutions Architect, Venafi
    The changing market landscape is requiring developers to adopt to modern application development patterns lending to greater automation requirements specifically in a native way. Development teams tend to adopt tools and services that fit them very well in their quest for complete automation for their continuous delivery model. Empowering developers to use the tools and services that they are comfortable using is almost mandatory in today’s application development world. How can security teams gain observability in the highly distributed system where the definition of perimeter is not easy to define? Gain an understanding of what Machine Identity Protection means to an organization where there is an ever growing ecosystem of application development and deployment stacks. Whether the organization uses cloud provider managed environment for containerized applications, or use various tools for managing Infrastructure as code, a standard API driven way of managing the lifecycle of TLS/SSL certificates, SSH keys, code signing certificates is needed within the continuous integration and delivery model. This session will uncover how security teams can provide the required set of services that development teams can consume in a self-service fashion.
  • HashiCorp Vault and Venafi: Speed and Security for Cloud Operating Model Success Recorded: Jun 19 2020 61 mins
    Justin Weissig, Vault Technical Marketing, HashiCorp & Ben Rogers, Sr. Strategic Solution Architect, Venafi
    This webinar will explore how DevOps teams are using HashiCorp Vault and Venafi to make it fast and easy to use TLS/SSL certificates across clouds with enterprise security compliance.
  • Software Supply Chains and Code-to-Code Combat Recorded: Jun 18 2020 33 mins
    Eddie Glenn, Sr. Prod. Mkt. Mgr. and Slam Laqtib, Group Tech. Prod. Mgr., Venafi
    Protecting private code signing keys is no longer enough. Hackers are learning new ways to compromise and use them. In this session, we’ll address the risks of unsecured code signing, the challenges our customers encounter, the best practices for protecting code signing machine identities, and how Venafi Next-Gen Code Signing can help.
  • SSH: How Big Is Your Exposure? Recorded: Jun 16 2020 39 mins
    Michael Thelander, Director of Product Marketing, Venafi
    SSH … There’s a Sleeping Dragon. Ubiquitous SSH keys provide secure, automated connections, but can be hard to control. Learn how to institute a proactive SSH key management program, uniting day-to-day users of SSH with the teams responsible for securing these critical assets. Mitigate real-life threats risks before they surface while preparing for your next auditor visit.
  • Full-Scale Machine Identity Protection: A Virtual Case Study Recorded: Jun 11 2020 39 mins
    Paul Cleary, Ecosystem Architect, Venafi; Guy Pe'er, VP R&D and co-founder, Unbound Tech
    Machine to machine communication is growing exponentially in today’s organizations, and that communication must be secured. Organizations rely more and more on their systems to communicate with each other to process critical data. And in an age of increasing cybercrime and security vulnerabilities, protecting the entire network throughout the entire certificate lifecycle is critical. Existing hardware systems, however, are outdated in a largely cloud-based environment; what’s an organization to do?

    In this webinar, Unbound’s VP R&D and co-founder Guy Pe’er and Venafi Ecosystem Architect Paul Cleary will discuss:

    + Why machine identity protection is important, especially in terms of automation, visibility, and intelligence;
    + How Venafi’s Trust Protection Platform protects those identities via a combination of policy enforcement and automation;
    + How protecting the cryptographic keys & certificates which underpin machine identities using Unbound’s Virtual HSM affords greater flexibility over traditional hardware

    In addition, Guy and Paul will provide a live demo of a TPP-vHSM integration. If you’re a security architect or a cryptographic key management specialist, this is one webinar you won’t want to miss.
  • Protection des identités machines Recorded: Jun 9 2020 59 mins
    Stephane Dorchin, Directeur Europe du Sud
    Il existe deux acteurs sur chaque réseau – les personnes et les machines - et les deux doivent être sécurisés. Les personnes (utilisateurs) utilisent des identifiants et des mots de passe pour se connecter et s’authentifier sur un réseau. Les machines quant à elles utilisent des clés et des certificats pour la communication et l'authentification machine à machine. Des milliards d’Euros sont dépensés chaque année pour sécuriser la gestion des identités et des accès, mais la quasi-totalité des dépenses est consacrée à la sécurisation des identifiants et des mots de passe, et pratiquement rien pour la protection des clés et des certificats.

    Les identités machine non protégées sont des cibles faciles et lucratives pour les cybercriminels. Ils utilisent des clés et des certificats non protégés pour écouter des communications privées, rendre les sites de phishing plus efficaces, des codes malicieux valides, et masquer leurs activités néfastes dans le trafic crypté, notamment pour faciliter l’introduction de logiciels malveillants et l’extraction de données confidentielles.

    Dans cette présentation, nous aborderons les différents types d'identités machine et leurs proliférations sur votre réseau. Vous verrez le rôle et le cycle de vie des identités machine, ainsi que le niveau insuffisant de leur protection. Nous examinerons ensuite les risques actuels et les nouveaux risques qui y sont liés. Nous conclurons avec les mesures que vous pouvez prendre immédiatement pour maîtriser ces risques.

    Enregistrez-vous!

    Date: Mardi 9 Juin 2020
    Heure : 10H00 – 11H00
  • Prevent “Certificate Sudden Death”: VIA Venafi Stops Certificate-Related Outages Recorded: Jun 8 2020 45 mins
    Michael Thelander, Director of Product Marketing, Venafi
    Certificate-related outages, whether from expired or misconfigured or unknown TLS certificates, are the bane of digital transformation. Perfectly functioning applications and services can be rendered inoperable. Worse still the security controls you rely on, from traffic inspection devices to web application firewalls, can’t protect you when a certificate-related outage shuts them down.

    Venafi has helped over 360 global customers eliminate certificate-related site and service outages. The resulting approach, based on a deep understanding of people, processes and technology needed to achieve this outcome, is VIA Venafi, the Venafi Way. VIA Venafi gives our customers the Visibility, Intelligence and Automation they need to stop outages. It also provides the world’s only guarantee against certificate-related outages: the VIA Venafi No Outage Guarantee.

    In this session you will:
    • Learn about some of the most troublesome certificate-related outages that have led to site failures and breaches in recent years
    • Gain an understanding of what’s needed to ensure against outages
    • Understand Venafi’s eight-step process to stopping certificate-related outages
    • Learn about our VIA Venafi No Outage Guarantee
    • See how a platform that delivers Visibility, Intelligence and Automation can achieve this outcome in a way that is not only affordable and manageable....but achieves it in a way guarantees results

    Register today!
  • Manage Kubernetes Clusters Using GlobalSign and Venafi’s DevOpsACCELERATE Recorded: May 27 2020 24 mins
    Lila Kee, General Manager, GlobalSign; David Brancato, Technical Product Marketing Manager, Venafi
    DevOps is growing to be the most efficient way to deliver software. Your data, whether it be at rest, in motion or in use needs to be protected. Are you doing what is necessary to keep container and service mesh communications secure in zero-trust, multicloud environments? Are you using the certificates which allow for maximum security, management and automation?

    Join this webinar to learn how developers can use trusted certificates in their Kubernetes clusters. Learn the benefits of utilizing GlobalSign's PKI for DevOps and Venafi's fully managed Venafi Cloud DevOpsACCELERATE to simplify certificate life cycle needs and gain regain control and insight into certificates in use.

    Attend this webinar so you can:
    • Provide developers with access to trusted certificates from within the tools they love
    • Eliminate rate limits for certificate issuance with two-second turnaround time
    • Access Public and Private certificates that are backed by GlobalSign’s reliable infrastructure and industry-leading support for use in DevOps environments
    • Automate policy enforcement and connect trusted certificate issuers to your Kubernetes clusters with Venafi Cloud DevOpsACCELERATE
    • Automate certificate renewals for Kubernetes ingress and egress to prevent outages
  • Software Supply Chain: Code-to-Code Combat Recorded: Apr 8 2020 56 mins
    Eddie Glenn, Sr. Product Marketing Manager, Venafi
    Is your agency doing everything it can to protect its software from foreign interference? From third party software libraries to in-house developed applications to PowerShell scripts, code signing is a necessary component to securing your software infrastructure. Code signing is effective at ensuring that the code you execute comes from where it claims to come from and hasn’t been modified by a third party.

    However, hackers know this and they are stealing code-signing private keys to make their malware look legitimate. Signing code is no longer enough to protect against this threat. Agencies need to protect the code signing credentials that they utilize and ensure that they are only ever used for authorized circumstances.

    In this webcast we’ll discuss:

    - How to ensure that cybercriminals do not steal your code signing credentials
    - How code signing is an effective tool to protect against PowerShell modification
    - Homeland Security's CISA Alert AA220-006A and what precautions you should take to protect PowerShell scripts from 3rd party modification

    Register today!
Intelligent Protection for Machine Identities
There are two actors on a network: people and machines. People rely on usernames and passwords to identify themselves and gain access to machines, applications and devices. Machines use digital keys and certificates to authenticate for secure machine-to-machine communication. While organizations spend billions of dollars each year on identity and access management and protecting usernames and passwords, very little is spent on protecting machine identities, which is essential to securing critical systems and data. The Venafi Platform delivers the machine identity intelligence and automation necessary to automatically safeguard the flow of information to trusted machines and prevent communication with untrusted ones—all at machine speed and scale. Venafi protects the largest, most sensitive networks in the world, and our more than 280 customers include 4 of the Top 5 US Banks, 4 of the Top 5 UK Banks, 5 of the Top 5 US Health Insurers and 4 of the Top 5 US Retailers. Venafi solutions help organizations:
- Prevent breaches
- Eliminate outages
- Orchestrate PKI
- Protect SSH access
- Pass compliance audits
- Automate DevOps

Visit www.venafi.com

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: IoT Security Made Easy: How to implement secure code signing and update delivery
  • Live at: Jul 15 2020 3:00 pm
  • Presented by: Eddie Glenn, Venafi and Nirmal Misra, Device Authority
  • From:
Your email has been sent.
or close