Name: Own your keys, not your HSM: Hardware Security Module as a Service
Start: 2023-01-26T15:00:00Z
End: 2023-01-26T15:00:32.000Z
Location: BrightTALK
Rating: 5

Entrust keeps the world moving safely by enabling trusted identities, payments and data protection around the globe. Today more than ever, people demand seamless, secure experiences, whether they’re crossing borders, making a purchase, or accessing corporate networks. With our unmatched breadth of digital security and credential issuance solutions, it’s no wonder the world’s most entrusted organizations trust us.

Zero Trust has quickly shifted from a trending tech term to a best practice recommended by governments and regulatory bodies. While the “Never Trust, Always Verify” principle of Zero Trust may seem like a simple enough concept, putting a Zero Trust strategy into action can be more complex. A recent Foundry MarketPulse study found that while organizations are increasingly adopting Zero Trust, they are also encountering obstacles along the way. Join us for this webinar as we discuss those challenges, then outline the road to implementing Zero Trust and why it’s so critical for securing your organization today as well as against future threats such as post-quantum.

Understanding and Navigating the Challenges Associated with Zero Trust

The why, when, and how eIDAS qualified signing can work for your business. eIDAS defines three levels of e-signatures: simple, advanced, and qualified. All three types can be a good fit depending on your use case; and while eIDAS qualified signatures provide the highest level of assurance, they are also the most complex to generate.

Watch this webinar to learn
•The differences between simple, advanced, and qualified signatures
•The technical requirements for qualified signatures and how they impact the signatories’ user experience
•The two major use cases for qualified signatures:
     - workforce (regular signers)
     - consumers (occasional signers)
•How Entrust can help you generate eIDAS qualified signatures for your use cases

eIDAS Qualified Signatures

This webcast will look at the security aspects that need to be considered to ensure comprehensive protection. Our speakers will examine why you need to encrypt your data – both at rest and in transit, why you need a hardware security module (HSM), and how the establishment of a root of trust delivers enhanced security and facilitates passing audits and regulatory compliance. The value of any key is equivalent to the value of all the data it protects. A single stolen or mismanaged key could lead to a huge data breach with the consequential reputational damage, regulatory fines, and loss of investor and customer confidence.

Join this webinar to learn how to:
· Utilize key management to standardize how you store and track your keys, and monitor compliance
· Utilize HSMs to add a robust layer of security that prevents attackers from accessing your keys
· Utilize HSMs to provide secure machine and end user credentials, adding additional security to your access management policies.
· Establish a root of trust in your organization by safeguarding and managing your cryptographic keys and processes in a certified hardware environment

Establishing Trust Relationships with your Customers through Security

With increasing advances in quantum computing capabilities and related cryptographic threats, traditional strategies for secrets management (including PKI and static and dynamic secrets, keys, and tokens) face unprecedented security challenges. What can you do to better understand the threat and prepare accordingly? 

In this webinar we’ll delve into the implications of bad actors having access to quantum computing capabilities on encryption, keys and secrets management, and data protection. Our experts will examine how you can deploy hardware security modules (HSMs) to establish a robust, quantum-resistant root of trust to strengthen your organization’s security posture. Gain a comprehensive understanding of the threat so you can be prepared.

Join the webcast and learn:
· What you need to consider when deploying robust PKI and secrets management
· How to effectively prepare for the threat posed by quantum computing advances
· Why a strong HSM root of trust is a critical component for high assurance security

This webinar is for you if you’re responsible for:
· Managing access to your critical applications and data
· Overseeing your organization’s security best practices
· Auditing and ensuring your organizational compliance

PKI and Secrets Management in a Post-Quantum World

With the digital transformation accelerated by the global pandemic, remote work is now routine and confidentiality assurance and secure access to corporate assets are more important than ever. IAM solutions must protect data and transactions through flexible access and identity controls.

This session will introduce Entrust's global leading IAM solution, which operates both on-premise and in the cloud and offers the industry's most diverse secondary authentication media support and AI-based adaptive authentication technology.

글로벌 펜데믹으로 가속화된 디지털전환으로 이제 원격 업무는 일상이 되었고 이에 기업 자산에 대한 기밀성 보장과 안전한 접근은 그 어느때 보다 중요해졌습니다.

이에 핵심이 되는 IAM 솔루션은 유연한 접근 및 신원 정보에 대한 통제를 통해 데이터와 트랜젝션을 보호해야 합니다.

본 세션에서는 온프레미스와 클라우드 모두에서 동작하며 업계에서 가장 다양한 2차 인증 매체지원과 AI 기반의 적응형 인증기술을 제공하는 엔트러스트의 글로벌 리더 IAM 솔루션을 소개합니다.

Watch our 1-hour webinar with a live Q&A session to learn more about:
1. Entrust IAM Solution Overview
2. Cloud-based IAM Solutions - Introducing IDAAS
3. On-Premises IAM Solutions - IDE Introduction

웨비나에서는 한시간 동안 아래의 내용을 다루게 되며 실시간 질의응답에 참여할 수 있습니다.
1. Entrust IAM 솔루션 개요
2. 클라우드 기반 IAM 솔루션 - IDAAS 소개
3. 온프레미스 기반 IAM 솔루션 - IDE 소개

온프레미스와 클라우드 모두를 지원하는 엔트러스트의 글로벌 IAM 솔루션

Interested to know what keeps other CTOs and IT officers up at night? A recent survey spanning the financial, government, and education industries reveal a common thread: maintaining their security advantage and preventing exposure to prevalent security threats. Entrust’s instant issuance platforms are designed to facilitate the secure exchange of sensitive information across various businesses. Join us for a deep dive into the survey results, explore their implications, and present solutions to help lead your organization toward a more secure future.

Managing an Instant Issuance Program? Security Advantage Should Be Top of Mind

With the traditional perimeter disappearing and the acceleration of digital transformation and cloud adoption, identity has become the new perimeter. So it's no surprise that identity is the most attacked initial attack vector in recent cyber breaches

In this webinar we'll explore:
• Common identity-based cyberattacks
• Ways to defend against these types of attacks
• How an identity-centric approach to data security is crucial in building a proactive defense against cyberattacks

Common Identity-Based Attacks

With the recent news that Google and Yahoo are mandating a new set of security requirements for email delivery from February 2024, it’s important you understand exactly how your email campaigns will be impacted. 
 
For once it’s nice and clear, for senders mailing out more than 5,000 emails a day to Gmail addresses, Google will require a set of authentication measures to be met to ensure they get delivered to its inboxes. It’s expected Yahoo will follow suit. 

Put simply, failure to comply means emails sent to Gmail and Yahoo inboxes will not be delivered. Given the sheer number of enterprises relying on email communication for their operations, there’ll be severe implications for non-compliant businesses.

Join this webinar where our experts will walk you through:

• What changes you’ll need to make to make sure your emails will still be delivered to Gmail’s 1.8bn inboxes
• How to start your email security journey with the fundamentals – SPF, DKIM and DMARC
• The bonus deliverability benefits that come with properly configured email security

Don't return to Sender -Do you know how to avoid the email blacklist?

Google is recommending that the validity for TLS/SSL certificates is reduced to just 90 days.  This will provide a major challenge for organizations that need to manage large numbers of certificates.  Expired certificates pose a significant cyber security risk - effective and automated certificate lifecycle management will be critical to help businesses overcome the challenges of purchasing and managing their TLS/SSL inventory. 

Join this webinar to learn about:
The implication of the Google 90 days TLS validity proposal on your business  

What can you do to reduce the potential workload and ensure a seamless transition 

Automation tools that are available to help you to manage shorter certificates lifespan.

Join this webinar to learn about:
The implication of the Google 90 days TLS validity proposal on your business  

What can you do to reduce the potential workload and ensure a seamless transition 

Automation tools that are available to help you to manage shorter certificates lifespan.

Best practices for shorter TLS/SSL certificate validity - Road to 90 days

As the attack surface grows, and the evolving threat landscape expands, your organization needs an effective Zero Trust strategy to secure your data and access to critical resources. 
Join us for an informative session where you will learn about the best practices to implement when architecting your PKI.

Our expert panel of speakers will walk through how you can combine a powerful PKI that is Post Quantum enabled with an effective Zero Trust strategy to protect against cyber threats.

How to Optimally Construct Your PKI for an Effective Zero Trust Strategy

Join Mastercard and Entrust in this webinar, where we’ll share the major payment trends and changes in the Middle East and Africa. Discover how banks can create a best-in-class payment experience for cardholders by leveraging the Mastercard Digital First program and the Entrust Digital Card Solution.

• Understand changing consumer behavior and market trends in the Middle East & Africa – learn why banks need support from payment experts to answer those consumer needs and why this will allow them to stay competitive (tokenization technology, ROI for their digital card portfolio)
• Discover how the Mastercard Digital First strategy and the Entrust Digital Card Solution allow banks to drive their digital transformation even further

Digital First: How to Build a Best-In-Class Digital Journey for Your Cardholder

Every day, more and more cardholders are seeking a seamless, digital-first payment and card management experience through their financial institution’s digital banking app. Whether an IT team has some digital card building blocks in place or they are starting from scratch, by partnering with a trusted digital card solution provider they can provide a “future-proof” solution that grows and scales with their institution and the broader market demand. Their existing mobile application can quickly and effortlessly incorporate enhancements like new features, improved functionality, and enhanced security features as they become available.

Join our live, interactive webinar to hear from financial issuance experts and discuss how:
• Advanced functionality including automated push provisioning to third-party wallets, Apple Pay, and Google Pay promote seamless payment experiences
• Enhanced card management features like tokenization, card alerts and controls, and display of sensitive card details elevate an organization’s payments enablement strategy
• Simplified implementation of a single mobile software development kit (the Entrust Digital Card Solution) offers an entire menu of capabilities for your cardholders while maintaining industry-leading security

Register now to learn more about how to build digital-first issuance within your banking app.

How to Build Digital-First Issuance Within Your Own Banking App

In today's fast-paced digital landscape, industry standards are continuously changing. Certificate-related outages and cybersecurity breaches caused by expired certificates are common, and digital certificates with shorter lifespans will only increase that risk. To address this challenge effectively, it’s critical for organizations to leverage automation and innovative solutions for streamlined certificate management processes.

Join our experts and learn:
• How automation addresses your business challenges
• What options are available to gain real-time visibility into your certificate landscape and prevent certificate-related outages
• How discovery and compliance tools can help reduce the risk of cybersecurity threats
• How to easily centralize the management of your digital certificates within one dashboard
• How to stay ahead of the security curve and effortlessly get access to the right certificates to meet evolving security requirements
• Flexible licensing options for a cost-effective solution

The Importance of Innovation and Automation for Certificate Lifecycle Management

In an era where secure, seamless digital interactions are paramount, understanding and implementing advanced digital onboarding strategies is crucial for every organization.
Join Entrust experts for an insightful webinar that delves deep into the heart of digital onboarding, highlighting how our comprehensive identity and access management (IAM) framework – which includes identity as a service (IDaaS), identity verification (IDV), and digital signing solutions – meets the evolving expectations of the modern customer.

Equip your organization with the knowledge to implement a robust digital onboarding strategy that not only meets the current demand but also anticipates future consumer needs.

• The Modern Customer: Insights into today’s consumers who demand digital-first experiences that are both convenient and secure
• Evolving Identity Across Consumer Use Cases: A look at how digital identity is transforming consumer interactions in secure payments, trusted travel, account openings, and more
• The Shift Toward Digital-First Experiences: Understanding consumer preferences for digital interactions and the organizational challenges in delivering connected user experiences

Enhancing Digital Onboarding for Modern Customers

Join security and identity experts from KuppingerCole Analysts and Entrust to reveal the intrinsic and symbiotic relationship between key management and secrets, offering visibility, compliance assurance, and effective risk management. Learn the importance of safe, repeatable processes around keys and secrets to fortify security in a dynamic cyber landscape.

Beyond Secrets Management: Transforming Security in the Digital Age

As the reality of quantum computing draws closer, organizations need to prepare for the post-quantum capabilities that will render traditional encryption technologies vulnerable to brute force attacks. In the realm of privileged access management (PAM), protecting the encryption mechanism that secures the vaults holding access credentials becomes critically important.

This webinar will look at the security aspects that need to be considered when deploying PAM solutions in a post-quantum world to ensure comprehensive protection. Our speakers will examine how the use of quantum-resistant algorithms and hardware security modules (HSMs) help harden privileged access credential vaults to enhance security, facilitate auditing, and regulate compliance.

Join the webinar to learn:
• What organizations need to consider when deploying PAM in a new post-quantum world
• How PAM solutions are enhancing security to meet the challenges of quantum computing
• Why an HSM root of trust is a critical component of a high-assurance security solution

This webinar is for you if you are responsible for:
• Managing critical system’s privileged access credentials
• Overseeing your organization’s security best practices
• Auditing and ensuring your organizational compliance

Privileged Access and Quantum Preparedness: How HSMs Support Root of Trust

Most recent breaches have a common thread: They start with an identity-based attack as the initial vector. In fact, credential compromise and phishing are two of the most common initial attack vectors among breaches. With the acceleration of digital transformation, cloud adoption, and an increasingly hybrid workforce, the traditional network perimeter is no more. Identity (users, devices, applications) is the new perimeter.

In this webinar we’ll explore:
• A few of the recent identity-related breaches in the news along with the tactics, techniques, and procedures (TTPs) involved in these attacks
• How you can help protect your organization from attacks by defending against these TTPs
• Why you need to secure your existing identity provider (IDP) with high assurance phishing-resistant, MFA bypass-resistant authentication

Deconstructing Recent Identity-Related Breaches

nShield as a Service is a subscription-based cloud solution for generating, accessing, and protecting cryptographic key material, separately from sensitive data. The solution delivers the same functionality as on-premises Hardware Security Modules (HSMs) and the benefits of a cloud service deployment, without the need to host and maintain the appliances. Because nShield as a Service benefits from the same unique Security World architecture as on-prem nShield deployments, you can easily migrate your cryptographic operations from on-prem to the cloud or use a hybrid approach, mixing both cloud-based and on-premises nShield HSMs.

Top takeaways:

• Understand how you can advance your cloud-centric strategies with FIPS 140-2 Level 3 protection for your business-critical apps and data
• Discover how our Security World architecture lets you scale HSM operations and access secure crypto functionality from anywhere
• Learn how CodeSafe’s secure execution capability provides on-demand access to your organization's secure, sensitive code protected inside the HSM
• Hear how you can benefit from no vendor lock in with the majors CSPs, have full control of your keys between multiple CSPs and repatriate keys/data back to on-premises HSMs

Own your keys, not your HSM: Hardware Security Module as a Service

IT Security

Cloud Security

Information Security

Information Governance

Cyber Defence

Cyber Security

Encryption

Data Security

Cloud Strategy

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Own your keys, not your HSM: Hardware Security Module as a Service

Presented by

About this talk

More from this channel