From DarkReading:
Stop Trusting Signed Malware: 3 Steps
This is a great article for companies that employ their own Certification Authority. I cannot stress the importance of protecting your Enterprise Root CA and employing a multi-tiered CA architecture. You must also make sure your certificates are protected as well.
Here is an overview of tiered CA architectures from Microsoft. If you have, or are responsible for, a Certification Authority environment you need to be familiar with these basics.
http://blogs.technet.com/b/askds/archive/2009/09/01/designing-and-implementing-a-pki-part-i-design-and-planning.aspx
No comments:
Post a Comment