Though not a standalone security widget, PKI can really improve security, protect data integrity, and bolster identity management.
Federal officials are poised to implement DNSSEC across the .gov domain by the end of 2009, but is the government in over its head?
After a Turkish Internet certificate authority "mistakenly" issues two unauthorized e-documents used to verify Web site authenticity, another organization creates a fraudulent certificate that could let it impersonate various Google sites. Browser makers have responded.
It took the company three years to open source its certificate system. Why? I have no idea.
Cyberattacks from China have reportedly adopted a variant of the malware known Sykipot to compromise the smart cards used by U.S. government agencies.
VeriSign discloses in quarterly SEC filing that hackers stole data in successful attacks, but doesn't say what data was stolen.
The security heavyweight eyes VeriSign's SSL, PKI, and other authentication services in a deal valued at $1.28 billion.
History is repeating itself in this market: Many of the hottest identity management firms are venture-backed start-ups, just like in the 1990s.
Some analysts say VeriSign's Secure Sockets Layer business is a nice fit for Symantec, but others question how smart it is for the security company to get into the commoditized SSL certificate market.
Having just acquired SPI Dynamics, Hewlett-Packard likely is going to acquire another security company sometime soon. But which one?