Name: Securing Connected Medical Devices
Start: 2022-05-03T15:00:00Z
End: 2022-05-03T15:36:33.000Z
Location: BrightTALK
Rating: 0

Keyfactor is the machine and IoT identity platform for modern enterprises. The company helps security teams manage cryptography as critical infrastructure by simplifying PKI, automating certificate lifecycle management, and enabling crypto-agility at scale. Companies trust Keyfactor to secure every digital key and certificate for multi-cloud enterprises, DevOps, and embedded IoT security. 

How do you build trust without boundaries? With multi-cloud and remote work policies taking hold, security focus has shifted from protecting the perimeter to securing everything using trusted identities. In this new reality, public key infrastructure (PKI) is an essential building block.

There’s just one problem – most PKI deployments are sorely outdated and overly complex.
Join Harry Haramis, SVP of Cloud & SaaS Marketplaces at Keyfactor, and Steven Duckworth, Chief Microcomputer Tech Support Specialist at Erie 1 BOCES, as they share their expertise and discuss how to modernize PKI, including: 

-The role of PKI in securing the cloud and remote workforce
-Different paths to modernizing PKI: hybrid, SaaS or fully managed
-How Erie 1 BOCES secured their remote workforce with Intune and EJBCA

Upgrading Your PKI: How to Build Trust Without Boundaries

Join our live panel with PKI and cryptography experts from Keyfactor and Fortanix as they discuss how data security has evolved, the challenges of managing keys and certificates in a multi-cloud reality, and why Keyfactor and Fortanix have partnered to solve these complex problems.

Topics for discussion:

- The partnership between Keyfactor and Fortanix
- Challenges with managing cryptography in multi-cloud environments
- Specific use cases: multi-cloud key and certificate management
- How Keyfactor and Fortanix integrate to enable multi-cloud data security

Data Security & Encryption in a Multi-Cloud Reality

Industrial Internet of Things (IIoT) and Industry 4.0 can accelerate and improve business outcomes, bringing immense value to organizations. In industries such as manufacturing, new service offerings can be developed and increased productivity can be achieved. However, as with anything connected to the internet, IIoT devices are subject to cyber threats, including interruption or spoofing of traffic and hijacking of critical connected devices. These critical IIoT systems require reliable connectivity and the ability to trust the data and devices within the ecosystem in which they operate.

In this session, you will learn how to enable new digital business models with secure communication in the connected factory.

Originally presented at IIoT World's Manufacturing Day 2022.

Securing the Connected Factory of Tomorrow

The 2022 State of Machine Identity Management Survey is here. One key takeaway: Cryptography is critical infrastructure, essential to secure the shift to cloud, IoT devices, and zero-trust strategies.

However, for many organizations, managing public key infrastructure (PKI), keys and digital certificates is messy. Emerging certificate issuance use cases, shorter lifespans, skills shortages, and a constantly changing IT landscape add to PKI complexity and create serious challenges.

Join Chris Hickman, Chief Security Officer, and Tomas Gustavsson, Chief PKI Officer at Keyfactor as they dive into key findings from this year’s report and share their insights on:

-Trends in the machine identity and cryptography landscape
-Current practices in PKI, certificate management, and code signing
-The importance of machine ID management in IAM strategy

2022 Report Findings: The State of PKI and Machine Identity Management

Microsoft CA, also known has Active Directory Certificate Services (AD CS), has long been the de facto choice for PKI in the enterprise. However, adoption of things like cloud services, DevOps, and IoT devices introduces new challenges for legacy PKI deployments.

So, how can teams modernize their PKI? Join Eric Clauss, AVP at Keyfactor, and Alex Gregory, VP of Marketplace Products, as they discuss why enterprises are making the shift from Microsoft CA to EJBCA, and how they can support modern use cases while reducing PKI complexity.

In this 30-minute discussion and live product demo, we’ll cover:

-Operational drawbacks of legacy PKI in modern IT
-Why and how teams migrate from Microsoft CA to EJBCA
-A live demo of EJBCA Enterprise

Tech Talk: Replacing Legacy Microsoft CAs with a Modern PKI

The explosion of machine identities, keys, and certificates across multi-cloud and DevOps environments have stretched your on-premise PKI to its limits.

And with over 62% of organizations currently or planning on outsourcing their PKI, now might be time to evaluate a new approach to PKI for the future.

In this webinar, we explore the evolving complexity and costs of PKI, how to balance potential risks against those costs, and ways your organization can build the business case for a cloud-first PKI strategy.

Join Chris Hickman, Chief Security Officer, as he discusses:

-How PKI has evolved and continues to grow in complexity
-Options for PKI deployment
-The costs of on-premise PKI
-The Future of PKI in the cloud

The Business Case for Cloud-First PKI

Are your PKI operations running as smooth as butter? If your answer is no, then this webinar is just what you need to learn how to accurately analyze the health of your crypto-agility readiness.  Most organizations aren’t aware of how many certificates and keys they have under management, or worse, not under control. Without an accurate inventory, organizations will experience more outages and have a greater risk of an attack or failed audit. But, getting an inventory is just the tip of the iceberg when it comes to the PKI and certificate management reporting metrics that matter.  Join Sami Van Vliet, Principal Technical Product Manager, and Ryan Yackel, VP of Product Marketing, as they share practical advice for tracking your machine identities.  You’ll learn:  -Why identifying key metrics is important to your PKI operations running smoothly -What metrics are worth tracking when it comes to machine identity management -How to create a baseline for must-have metrics

Preparing for Crypto-Agility: The Top 10 PKI Metrics You Should Care About

Public Key Cryptography is allowing for trusted IoT environments to move from limited, dedicated networks to cloud and mobile platforms. This has huge implications for IoT deployments, and with hacking/ransomware threats increasing, establishing network certification for entities, hardware, and software is likely to be the “cost of doing business”. This session will cover the latest in technology and its significance for businesses employing connected devices.

Moderated by: Robin Duke-Woolley, CEO, Beecham Research
Panelists include: Alex Gregory (VP of Marketplace Products, Keyfactor), Nils Gerhardt (Chief Technology Officer, Utimaco), and Eustace Asanghanwa (Principal Program Manager, Microsoft)

Originally presented on February 23, 2022 as part of the IoT M2M Council (IMC) Winter IoT Days.

Panel Discussion: Using Public Key Infrastructure, Trusted Environments

Calling all PKI admins! It’s time to come clean about the biggest PKI and certificate management challenges facing teams today and get practical advice on how to overcome them.

Join seasoned PKI experts Chris Hickman, CSO at Keyfactor, and Sami Van Vliet, Principal Product Manager, as they share insights and shed a little humor on the ups and downs of working with PKI. They’ll also cover some tips and recommendations to help you leave your PKI problems behind.

Better yet, they’ll be accompanied by a live Comic Artist, Matt Erkhart, to bring the conversation to life as he illustrates the conversation on screen in real time.

So, whether PKI is your passion or it’s just another plate you're spinning, this discussion is for you.

PKI Problems: Stories from the Trenches

From IoT and mobile devices to software-defined applications, cloud instances, containers, and even the code running within them, machines already far outnumber humans. And much like the human identities we rely on to access apps and devices we use every day, machines require a set of credentials to authenticate and securely connect with other devices and apps on the network.

But despite their critical importance, these “machine identities,” such as TLS certificates, SSH keys and encryption keys, are often left unmanaged and unprotected. Are you confident you know your machine endpoints? Are authentication protocols sufficiently robust? What role should machine identities play in your revised enterprise IAM strategy?

Join this session for expert insight on:

-Key risks and challenges in managing keys and certificates;
-Where your organization is today in monitoring and securing machine identities;
-Practical advice for developing a roadmap for machine identity management.

Webinar originally presented live on databreachtoday.com (ISMG) on January 27, 2022.

IAM Strategy: Why Machine Identities are Key

The cyber security threat landscape faced by industrial and manufacturing sectors deteriorated significantly in the past year. New ransomware and supply chain attack capabilities have resulted in high-impact crises like the Colonial Pipelines and the JBS Foods incidents. Besides the bad publicity created by these events, they have also placed manufacturing companies in the center of another very undesirable bullseye, namely the awareness by cybercriminals who now see how profitable attacking manufacturing systems really can be.

This panel will discuss how manufacturing companies must respond if they want to avoid becoming the next front-page hacking story. We'll explore new technologies and tools needed for a successful defense against these emerging threats. We'll also look at the changing regulatory environment for IT/OT cyber security and how companies can create a manageable and cost-effective strategy to safeguard both their critical systems and their reputation.

Originally presented at IIoT World's Digital Manufacturing Day in December 2021.

Current and Emerging Cyber Threats to Manufacturing

Today’s ever evolving digital landscape requires cybersecurity leaders to be more agile, proactive, and deploy solutions faster than ever.

In the past, financial services was one of the slowest industries to embrace cloud deployments and adopt their cybersecurity strategy to support digital transformation initiatives.

But that’s all changed. Companies like Capital One and Microsoft are leading the way and you get to hear directly from their experts.

Chris Stevens, Senior Cryptography Manager at Capital One, Praveen Rawat, FinTech Tech Strategist (V-CTO) at Microsoft, and Harry Haramis, SVP Cloud and SaaS Marketplaces at Keyfactor, for a panel discussion on cybersecurity insights for the practitioners in the financial services industry.
In this panel, you’ll hear:

• Capital One approaches DevSecOps with their cryptography and PKI practices
• Exciting PKI use cases that support new digital business initiatives
•	Typical challenges Microsoft is solving for financial services
•	Practical strategies to protect transactions and prevent attacks in a remote-first world

Experts in FinServ Cybersecurity: Insights from Capital One and Microsoft

As companies build connectivity into more and more products, the risk of attacks on devices as they move through the supply chain, and throughout their lifecycle, has grown significantly. Now IoT device consumers and operators are looking to manufacturers to ensure trust right from the factory floor.

That’s why Keyfactor Control – an end-to-end PKI and IoT identity platform – integrates with leading trusted platform modules (TPMs) to enable manufacturers with strong authentication and hardware-based trust for every device that rolls off the production line and into the field.

In this session, we’ll discuss and run through a live demo of how to leverage certificate-based authentication and TPM 2.0 to embed unique identity into devices as part of the product build, and how to manage these identities from product design to end-of-life.

Securing Device Identity with PKI and Trusted Platform Modules (TPMs)

Deploying PKI is far from what it used to be. Today, trust requirements, migration, specialized use cases, and hybrid environments are all key drivers for the use of multiple PKI and CA deployments. So, how do we balance the demand for scale and performance with need for trust and control?

In this session on Back to Basics: Simplifying PKI in Complex IT Environments, Ted Shorter, Chief Technology Officer (CTO) at Keyfactor will share insights into how the PKI landscape has evolved and how organizations can maintain governance, visibility and control in modern hybrid and multi-cloud environments.

Key takeaways will include:

-Emerging use cases: PKI in DevOps, IoT identities, Zero-Trust architectures
-How PKI requirements differ between private, public and cloud-based CAs
-How enterprises can scale PKI to meet on-premise and cloud requirements
-Why crypto-agility and root of trust management are the keys to success


Originally presented at PrimeKey Tech Days 2021.

Back to Basics: Simplifying PKI in Complex IT Environments

People often associate AI in cybersecurity with network anomaly detection tools. Are there other use cases for AI and machine learning in OT cyber security? Isn't AI expensive? How do I justify the cost of an AI solution? Watch this on-demand session to get answers to those questions and more. 

Panelists include:

-Eric Byres, CTO and Board Member, aDolus
-Danielle Jablanski, Senior Research Analyst, Guidehouse
-Ellen Boehm, VP of IoT Strategy & Operations, Keyfactor
-Zakarya Drias, Ph.D., Director of Cybersecurity, Schneider Electric
-Michael Hudak, Founder, Fortify Your Data

This session was previously recorded at IIoT World's ICS Cybersecurity Day October 2021.

The Intersection of AI & Industrial Control Systems Cybersecurity Best Practices

Machines already outnumber the humans on your network, which means every machine needs a trusted identity. Consider IoT devices, mobile devices and software-defined workloads and applications – trusted identity for each and every machine is critical.

As zero-trust and multi-cloud architecture become the norm, the role of machine identities in enterprise IAM (identity and access management) has reached critical importance – each needing to be managed and protected. The stakes are high, and keeping ahead of outages, key theft or misuse and internal and regulatory audits is a serious challenge.

In this webinar, our panel will discuss:
· The use (and misuse) of machine identities in organizations today
· Implications of machine IDs on data privacy and protection
· Strategies and recommendations to manage machine identities
· How to operationalize your strategy with a Crypto Center of Excellence (CCoE)

Machine ID Management & Digital Transformation: Building a Secure Future

Today, hybrid and multi-cloud are the norms. The increasing volume and velocity of digital certificates in these complex environments demands a highly scalable and automated approach.
 
That's where Keyfactor can help.
 
In this discussion and demo, Eric Mizell, VP of PKI Solutions Engineering, and Alex Gregory, Senior Director Cloud & Managed PKI, will share how Keyfactor delivers end-to-end certificate issuance, management, and lifecycle automation backed by highly scalable private PKI with EJBCA.
 
Join this live demo to learn how to:

- Easily issue digital certificates from EJBCA Cloud
- Quickly create multiple root CAs or PKI hierarchies on a single EJBCA cluster
- Generate new CA hierarchies quickly to meet any demand without requiring more servers
- Manage certificate lifecycles with inventory, control, and automation

Achieving End-to-End Certificate Management with Keyfactor and EJBCA

Within the healthcare supply chain, critical medical devices are a growing area of concern for cyber security. Security experts believe the criticality of these devices must be addressed adamantly. Vulnerabilities exist when medical devices are connected to networks and accessible remotely, and when there is poor authentication and authorization. 

Key learnings: 
Methods that protect data-at-rest and in-transit between devices, apps and cloud platforms 
Manage keys, certificates, and trust across entire device fleets
Meet cryptography certification requirements with FIPS 140-2/3
Maximize performance and minimize vulnerabilities when securing data
How Keyfactor/wolfSSL work together to enable manufacturers to secure their devices and protect them from threats

Securing Connected Medical Devices

Cyber Security

Medical Devices

IoT Security

Connected Device

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Securing Connected Medical Devices

Presented by

About this talk

More from this channel