node-751
Key & Secrets Management
- What is Encryption Key Management?
- What is a Centralized Key Management System?
- What is Bring Your Own Key (BYOK)?
- What is FIPS 140-2?
- What is DNSSEC?
- What is a Credentials Management System?
- What is Key Management Interoperability Protocol (KMIP)?
- What is an Asymmetric Key or Asymmetric Key Cryptography?
- What is a Symmetric Key?
- What is the Encryption Key Management Lifecycle?
Encryption
- What is Storage Encryption?
- What is Network Encryption?
- What is Transparent Encryption?
- What is End-to-End Encryption?
- What is Point-to-Point Encryption?
- What is Application Layer Encryption?
- What is Tokenization?
- What is Dynamic Masking?
- What is Data at Rest?
- What is Full-Disk Encryption (FDE) and What are Self-Encrypting Drives (SED)?
- What is data center interconnect (DCI) layer 2 encryption?
Hardware Security Modules
Signing, Certificates and Stamping
Public Key Infrastructure (PKI)
Data Protection & Security Regulations
PCI DSS Compliance
- Why Does PCI DSS Matter?
- Why Should My Organization Maintain a Universal Data Security Standard, If It Is Subject to PCI DSS?
- What Are the Core Requirements of PCI DSS?
- Can I Use PCI DSS Principles to Protect Other Data?
- How Can I Protect Stored Payment Cardholder Data (PCI DSS Requirement 3)?
- How Can I Encrypt Account Data in Transit (PCI DSS Requirement 4)?
- How Can I Restrict Access to Cardholder Data (PCI DSS Requirement 7)?
- How Can I Authenticate Access to System Components (PCI DSS Requirement 8)?
- How Can I Monitor Access to Cardholder Data (PCI DSS Requirement 10)?
- How Can I Make Stored PAN Information Unreadable?
Data Security in the Cloud
- How Do I Extend my Existing Security and Data Controls to the Cloud?
- How Do I Protect Data as I Move and Store it in the Cloud?
- How Do I Ensure the Cloud Provider Does Not Access my Data?
- Can I Use my own Encryption Keys in the Cloud?
- How Do I Enforce Data Residency Policies in the Cloud and, Specifically, Comply with GDPR?
- How Do I Track and Monitor Data Access and Usage in the Cloud?
- Can I Secure Containers in the Cloud or across Different Clouds?
- How Do I Secure my Data in a Multi-Tenant Cloud Environment?
- What is the Shared Security Model?
- What is the Cloud Security Alliance?
- What is the Cloud Controls Matrix?
- What is the Consensus Assessment Initiative Questionnaire?
- What is SalesForce Shield Platform Encryption?
- What is Multi-Cloud Key Management?
Internet of Things (IoT)
- What Are the Key Requirements of IoT Security?
- What Do Connected Devices Require to Participate in the IoT Securely?
- Are There Security Guidelines for the IoT?
- Why Is Device Authentication Necessary for the IoT?
- Why Is Secure Manufacturing Necessary for IoT Devices?
- Why Is Code Signing Necessary for IoT Devices?
- What is IoT PKI?
Thales Special Reports
APAC Compliance
Americas Compliance
- What is New York State’s Cybersecurity Requirements for Financial Services Companies Compliance?
- What is FISMA Compliance?
- What is FIPS 199 and FIPS 200 Compliance?
- What is FIPS 140-2 Certification?
- What is NCUA Regulatory Compliance?
- What is Sarbanes-Oxley (SOX) Act Data-at-Rest Security Compliance?
- What is NAIC Insurance Data Security Model Law Compliance?
- What is FedRAMP?
- What is GLBA Compliance?
- What is HIPAA HITECH?
- What is FDA/DEA EPCS Compliance?
- What is NIST 800-53, Revision 4?
Global Compliance
What is a Certificate Authority?
A Certificate Authority (CA) is the core component of a public key infrastructure (PKI) responsible for establishing a hierarchical chain of trust. CAs issue the digital credentials used to certify the identity of users. CAs underpin the security of a PKI and the services they support, and therefore can be the focus of sophisticated targeted attacks. In order to mitigate the risk of attacks against Certificate Authorities, physical and logical controls as well as hardening mechanisms, such as hardware security modules (HSMs) have become necessary to ensure the integrity of a PKI.