The Post-Quantum Crisis
An analysis of the new NIST cryptographic standards and the global migration to protect against quantum computing threats.
The End of Passkey Prison
The FIDO Alliance's new CXP and CXF specifications aim to solve passkey vendor lock-in, enabling users to move their digital credentials. This article explores these standards and their impact on digital identity.
The Adventure of the Compromised Keys
Examining the implications of compromised SaaS provider keys, using the Commvault incident as a case study. Discusses the trust paradox, shared responsibility, and the need for a proactive approach to third-party security risks.
Unmasking Softwares Hidden Depths: The Supply Chain Security Challenge
Exploring software supply chain security risks, recent high-profile incidents, and how Software Bills of Materials (SBOMs) provide essential transparency and protection
Putting Numbers on Fuzzy Risks: The FAIR Approach
How to transform vague security risk assessments into quantifiable values you can use for business decisions using Factor Analysis of Information Risk (FAIR)