continue
"4.1 billion: Number of data records compromised during just the first six months of 2019."
Our areas of expertise include Public Key Infrastructure, enterprise key management, cloud key management, code-signing, hardware security modules, transparent data encryption, element level format preserving encryption, homomorphic encryption, and tokenization.
Our knowledge and experience put experts on your team to deploy the industry’s best, proven encryption technologies. Our people and services enable organizations to successfully achieve their data security goals in Confidentiality, Integrity, and Availability.
Our solutions will secure your sensitive data throughout its entire lifecycle.
Advisory Board Member
Brian has been involved in Microsoft PKI since the beta testing of Windows Server 2003.
He worked as a contractor on the product team at Microsoft during the development of Windows Server 2003 PKI, authoring several whitepapers on the technology.
In addition, he has authored two books, several whitepapers and a course on Microsoft PKI.
Our specialty is delivering Assessments, Strategies, and Implementations for organizations who either lack specialized resources or who simply value having a trusted advisor to assist them in upgrading their data security posture.
At Encryption Consulting, we have created a custom framework based on NIST 800-57, NIST 800-53 standards, FIPS and industry best practices to accelerate our client’s data protection projects.
In summary, we enable organizations to identify areas in their current encryption environment needing improvement by conducting as assessment, creating a roadmap, and implementing an encryption plan end-to-end.
The private keys of the code-signing certificate can be stored in an HSM to eliminate the risks associated with stolen, corrupted, or misused keys.
Client-side hashing ensures build performance and avoids unnecessary movement of files to provide a greater level of security
The command line signing tool provides a faster method to sign requests in bulk
Robust access control systems can be integrated with LDAP and customizable workflows to mitigate risks associated with granting wrong access to unauthorized users, allowing them to sign code with malicious certificates
Support for customized workflows of an “M of N” quorum with multi-tier support of approvers
Support for InfosSec policies to improve adoption of the solution and enable different business teams to have their own workflow for Code Signing
Validation of code against UpToDate antivirus definitions for virus and malware before digitally signing it will mitigate risks associated with signing malicious code