Name: How to Safeguard Your Software Supply Chain with Secure Code Signing
Start: 2024-03-07T18:00:00Z
End: 2024-03-07T18:00:42.000Z
Location: BrightTALK
Rating: 2

 AppViewX is trusted by the world’s leading organizations to reduce risk, ensure compliance, and increase visibility through automated certificate lifecycle management. The AVX ONE platform provides complete certificate lifecycle management and PKI-as-a-Service using streamlined automation workflows to prevent outages, reduce security incidents and enable crypto-agility.

Explore new certificate lifespan mandates, operational best practices, and a roadmap for CLM automation in this 45-minute webinar.

Join Chris Bailey, Chairman of the Board, PKI Consortium and Board Member, AppViewX, as he breaks down the new certificate lifespan mandates, key operational best practices, and a practical roadmap for automating Certificate Lifecycle Management (CLM).

In this session, Chris will decode:
- Why the CA/Browser Forum mandated shorter certificate validity
- How to prepare for each certificate validity phase
- What other PKI mandates mean for your organization
- Live demo: Managing certificate validity at scale with automation

Don’t wait until the new mandates take effect. Learn how to adapt, automate, and stay compliant in this fast-evolving PKI landscape.

New PKI Realities: Navigating CA/B Forum’s 47-Day Certificate Mandates & CLM Automation

Major disruptions are reshaping the PKI landscape, and organizations without automated certificate lifecycle management are increasingly vulnerable.

This webinar explores how crypto-agility can shield your organization from PKI disruptions and future cryptographic threats. During the session, industry expert Ganesh Gopalan shares insights and strategies to help enterprises navigate this evolving security landscape. You’ll learn:

• Trends and disruptions impacting the PKI ecosystem
• Crypto-agility's role in modern security
• Why implementing crypto-agility cannot wait
• Best practices for establishing crypto-agility

Tune in now to learn how proactive crypto-agility can transform certificate management and prepare your organization for future challenges.

How to Avoid PKI DIsruptions with Crypto-Agility

The digital landscape is shifting toward shorter-lived TLS certificates, with Google pushing for 90-day certificates, Apple advocating for 47-day cycles, and Let's Encrypt testing 6-day certificates. This shift from the 398-day standard poses operational challenges for organizations.

This webinar explores how crypto-agility and automated certificate lifecycle management help organizations adapt to compressed renewal cycles without costly downtime. Industry experts Christian Simko and Cally Fritsch share insights and solutions for managing certificates at scale. By watching, you’ll learn:

• The three pillars for achieving crypto-agility
• Why closed-loop automation is critical for frequent renewals
• How enterprise-grade CLM solutions streamline management
• Strategies to prevent revenue loss and reputational damage

Tune in now to discover automation strategies and tools for seamless certificate management.

Automate & Simplify 90-day TLS Certificate Management

The quantum computing revolution threatens current encryption methods, potentially making today's cryptographic protections obsolete. Organizations must urgently prepare for NIST's finalized Post-Quantum Cryptography standards before quantum computers compromise existing security.

In this webcast, an expert panel offers vital guidance for transitioning to quantum-resistant encryption. Industry leaders provide strategic insights and practical steps to kickstart your PQC readiness journey.

Join the session now to gain the clarity and direction needed to safeguard your cryptographic infrastructure against the quantum threat.

How To Prepare for NIST's Post-Quantum Cryptography Standards

Certificates are the foundation of secure and encrypted communication, ensuring trust by authenticating users, applications, and devices. However, certificates rely on public key cryptography and encryption algorithms that will eventually be broken by powerful quantum computers. Therefore, transitioning to Post-Quantum Cryptography (PQC) and quantum resistant certificates is now a must. As NIST has now published the first set of standard PQC encryption algorithms and guidance on PQC transition, it is time to start preparing to be quantum safe. Join us for this expert-led webinar, where we’ll guide you through the essential steps to start getting quantum-ready.

 Key takeaways:
* Understand the urgency: Why PQC migration is crucial
* Your Choice of Algorithms: NIST PQC standardization and future outlook
* Actionable strategies: Learn practical steps to start your PQC readiness with certificate visibility, automation and control–the essentials for Crypto-Agility.

 Hear from Ganesh Gopalan, specialist in certificate lifecycle management, and Kevin McKeogh, a cryptographic expert and GP HSM Product Lead, bringing you a comprehensive perspective from both sides. With expertise in certificate management and cryptography, this webinar will provide you with practical guidance to begin your PQC readiness and journey to future-proof your certificates.

Securing the future: A Guide to PQC-ready certificates

With regulations tightening and cryptographic threats evolving, enterprises can no longer rely on static encryption strategies. The shift toward crypto agility is now a business imperative, ensuring organizations can seamlessly adapt to new cryptographic standards and regulatory requirements across the globe. The rise of global compliance mandates, including NIST PQC guidelines, GDPR, and industry-specific security requirements, is driving organizations to rethink their cryptographic management approach.

In this expert-led session, we will discuss the challenges enterprises face with legacy cryptography, the impact of emerging compliance mandates, and practical steps to accelerate crypto agility.

Key takeaways:
• The global regulatory impact: How compliance requirements are accelerating crypto agility.
• Crypto agility in action: How enterprises can automate discovery, management, and migration.
• Planning for the future: Preparing for the transition to quantum-safe cryptography.

Join Amit Mishra, HCLTech, and Karthik Kannan, AppViewX, as they share expert insights into international regulations, crypto agility best practices, and strategies for enterprises to secure their cryptographic future with minimal risk and disruption.

Breaking the Chains of Legacy Cryptography: How Enterprises Can Accelerate Crypto Agility

With regulations tightening and cryptographic threats evolving, enterprises can no longer rely on static encryption strategies. The shift toward crypto agility is now a business imperative, ensuring organizations can seamlessly adapt to new cryptographic standards and regulatory requirements across the globe. The rise of global compliance mandates, including NIST PQC guidelines, GDPR, and industry-specific security requirements, is driving organizations to rethink their cryptographic management approach.
 
In this expert-led session, we will discuss the challenges enterprises face with legacy cryptography, the impact of emerging compliance mandates, and practical steps to accelerate crypto agility.
 
Key takeaways:
•  The global regulatory impact: How compliance requirements are accelerating crypto agility.
•  Crypto agility in action: How enterprises can automate discovery, management, and migration.
•  Planning for the future: Preparing for the transition to quantum-safe cryptography.
 
Join Amit Mishra, HCLTech, and Karthik Kannan, AppViewX, as they share expert insights into international regulations, crypto agility best practices, and strategies for enterprises to secure their cryptographic future with minimal risk and disruption.

At RSA Conference 2025, Cally Fritsch, Director of Product Marketing, and Murali Palanisamy, Chief Solutions Officer, discussed the crucial and timely topic of Post-Quantum Cryptography (PQC). The conversation details the urgency of PQC and how organizations can accelerate their PQC readiness planning today.

Highlights from the PQC conversation include:
● What is PQC and why it’s important
● NIST’s recent PQC announcements, including:
● The finalized PQC encryption and digital signature algorithms
● The roadmap to deprecate classical cryptography by 2030 and the full phase out by 2035
● The current state of industry readiness
● Critical steps enterprises should take today to prepare
● How AppViewX AVX ONE can help accelerate PQC readiness 

Watch the session today for practical insights on navigating the shift to Post-Quantum Cryptography!

Accelerating Post-Quantum Cryptography: A Conversation at RSA Conference 2025

Shorter-lived TLS certificates are coming. Google and Apple are pushing for 90-day and 47-day certificates respectively, while Let’s Encrypt is even testing 6-day certificates. This shift is happening fast. You need certificate lifecycle management (CLM) automation and crypto-agility to keep up.

Moving from a 398-day renewal cycle to just 90 or 47 days is a whole new ballgame. Without the right strategy, processes, and solutions, managing certificates at this pace could negatively impact your organization–leading to downtime, revenue loss, and reputational damage.

On April 23, join us for an exclusive webinar with Christian Simko (VP of Product Marketing) and Cally Fritsch (Director of Product Marketing) at AppViewX, as they dive into why crypto-agility is absolutely necessary for managing shorter-lived certificates at scale.

What You’ll Learn:
-  3 key pillars that can get you to crypto-agility
-  Why closed-loop automation is critical for simplifying CLM and tackling frequent certificate renewals
-  How AppViewX AVX ONE CLM helps automate CLM to support enterprise crypto-agility 

Register Now!

Managing Shorter Validity TLS Certificates with Crypto-Agility

With the recent NIST announcement of the first set of finalized Post-Quantum Cryptography (PQC) encryption algorithms, many organizations are wondering what to do next. This raises important questions like - what is the PQC timeline and where do we get started now in our readiness journey?

Join our expert panel discussion with: 
● Murali Palanisamy, Chief Solutions Officer at AppViewX and 
● Ganesh Gopalan, VP & General Manager of Identity Security at AppViewX

In this session, we will explore:
● The Current State of PQC: NIST’s recent announcement and what it means across industries
● Next Steps: What happens next for technology vendors, enterprises and PQC ‘adoption’
● Strategic Insights: Key strategies and tools for PQC readiness 

Don’t miss this opportunity to gain clarity on PQC and learn how to stay ahead of critical PKI changes.

Post-Quantum Cryptography (PQC) Panel: NIST’s Announcement and PQC Readiness

Non-human identities present a relatively new challenge for enterprise security teams. Non-human identities, including digital certificates, service accounts and bots, secrets, and OAuth tokens, frequently have broad privileges and are an attractive attack vector for adversaries. Getting visibility to these identities and managing the risk associated with them can be new territory for many security teams.  

Recent research from the Enterprise Strategy Group shows  that inadequate management can increase risk with consequences running the gamut from downed systems to compliance concerns to data breaches. With non-human identity security concerns now getting board level attention, this webinar will explain the management challenges, how enterprises are innovating to address those challenges, and provide best practices in addressing these challenges.

New ESG Research: Uncovering and Managing Non-human identity Risk

There are major disruptions on the “PKI horizon” with the Entrust distrust issue, Google’s proposal for 90-Day TLS Certificates, and Post-Quantum Cryptography (PQC) readiness. If you have not already implemented an automated certificate lifecycle management strategy, you are probably feeling the stress. Crypto-Agility is the answer to solving these challenges and AppViewX can help get you there fast.

Join Ganesh Gopalan, General Manager and Vice President of Identity Security for PKI and CLM at AppViewX for an insightful webinar where we will dive into the latest trends in PKI, what the implications are for enterprises and the ultimate call-to-action – implementing Crypto-Agility.

Key Takeaways:
● Demystifying the trends and disruptions in today’s PKI landscape 
● What is Crypto-Agility? 
● Top reasons to implement Crypto-Agility now!
● Best practices for Crypto-Agility within your organization

Top 3 Reasons You Need Crypto-Agility Today

Google recently announced a proposal to reduce the maximum validity period for public TLS certificates from 398 days to 90 days. This is a massive change that all organizations need to be aware of now to start preparing for how to renew all public TLS certificates four times a year.

What is the objective behind these proposed changes? What’s the impact on certificate management and how should organizations prepare?
 
Certificate lifecycle management automation is the only way to keep up with short-lived certificates to ensure your internet applications are available and secure. Start preparing now!

Join Muralidharan Palanisamy, Chief Solutions Officer, AppViewX to learn and understand:

- Google’s proposal to reduce the TLS certificate validity 
- The impact of short-lived certificates and how to prepare
- How to achieve certificate lifecycle automation and crypto-agility at scale with AppViewX CERT+

Crypto-Agility Automation: Prepare Now for Google’s 90-Day TLS Validity Proposal

Microsoft CA, also known as Active Directory Certificate Services (ADCS), has been the go-to solution for organizations' private PKI needs for many years. However, maintaining and securing Microsoft CA is getting more and more difficult and costly. It’s now time to migrate to a more cost effective and efficient PKI-as-a-Service (PKIaaS) to support the growing need of private trust certificates.

Join Ganesh Gopalan, General Manager & Vice President, Identity Security for PKI & CLM at AppViewX for an insightful webinar discussing the compelling reasons to transition from a Microsoft CA to PKIaaS and simple steps to ensure a successful migration.

The webinar will cover:

● The State of PKI Today and the Role of Microsoft CA
● Pain points with Microsoft CA that are driving organizations to consider PKIaaS
● Simple steps to effectively streamline the migration from MS CA to PKIaaS

Simple Steps to Migrate Your Microsoft CA to PKI-as-a-Service

Kubernetes is a highly complex environment to secure and native security controls offered by Kubernetes and other open-source solutions often fall short. 

PKI-based TLS certificates are highly-recommended for Kubernetes security. With identities, authentication, and encryption - TLS certificates offer an effective way of securing multiple layers in Kubernetes, encompassing the Ingress traffic, Service Mesh and pod-to-pod communications, and Kubernetes infrastructure components. 

However, managing a high-volume of short-lived TLS certificates in Kubernetes is not easy. Issuing certificates at DevOps speed while ensuring certificates are valid, secure, and compliant, can become extremely daunting for security teams. 

The key to navigating these challenges and bringing security up to speed with DevOps lies in simplifying certificate lifecycle management for Kubernetes. 

Join our webinar with, Harshana Morthy, Lead Principal Solutions Architect, AppViewX for a deeper dive on: 

- Fortifying Kubernetes security with PKI and TLS/mTLS certificates 
- The challenges of managing certificates across Kubernetes environments 
- How to simplify and modernize Certificate Lifecycle Management to harden Kubernetes security and enable DevOps speed and agility

Simplifying Certificate Lifecycle Management for Kubernetes Environments

The importance of code signing to ensure the integrity and authenticity of software, securing the software supply chain, and extending trust to end users cannot be overstated. Yet, many organizations continue to practice code signing with ad-hoc processes and mismanaged private keys, exposing themselves and their software to supply chain attacks. 

How do you mitigate this risk? How do you ensure your code signing practices are efficient, reliable, and secure? 

Join us for an insightful webinar featuring Ganesh Gopalan, Vice President of Product Management at AppViewX, as he shares practical strategies for modernizing code signing processes to tackle DevOps challenges and strengthen the overall software supply chain.

Here’s what you’ll learn:
● The power of secure code signing in modern software supply chains
● How to meet the new CA/Browser Forum code signing requirements
● The strategies to integrate code signing into the DevOps pipeline
● How to give security teams better visibility and control over code signing

How to Safeguard Your Software Supply Chain with Secure Code Signing

Network Security

Cyber Security

DevOps

DevSecOps

Application Security

Software Security

Software supply chain

Software supply chain attacks

Key Management

Security Validation

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Safeguard Your Software Supply Chain with Secure Code Signing

Presented by

About this talk

AppViewX