On-demand Videos Encryption Consulting Virtual Conference 2021 Click here

Free PKI Assessment

Home » Free PKI Assessment

Free PKI Assessment Services

The assessment will review the current state to identify the gaps and provide recommendations as part of a comparative study of the current and future state of your PKI and the industry best practices. This study will provide our customers with a valuable risk report, a roadmap to improvement, and a way to prioritize PKI security investments.

The PKI Assessment engagement will consist of assessing the current operations, certificate lifecycle management process, PKI architectural design, governance, and risk and compliance monitoring used by the Customer, and help them mitigate all issues in the above areas.

Request a FREE confidential PKI assessment today

An Encryption Consulting representative will contact you to schedule your PKI assessment


    Encryption Consulting will perform the following activities and document the results for the Customer:

    • Information gathering session
    • Review of the current process across the organization
    • Perform a detailed PKI health check for the below components of the PKI system and configuration
      • Certification Authorities
      • Registration Authority
      • Root CA
      • Subordinate CA’s
      • HSMs
      • Certificates
      • SSH Keys
      • Certificate Policy
      • Certificate Practice Statement
    HashiCorp Vault Assessment
    Comforte Data Security Platform Strategy
    • Identification of gaps and provide recommendations in the following PKI domains
      • Operations
      • Certificate Lifecycle Management Process
      • System Architecture Design
      • Governance
      • Risk and Compliance Monitoring
    • A summary of the observations from the PKI assessment
    • Recommendations for improving the Customer’s process and technology with PKI best practices
    ×

    The private keys of the code-signing certificate can be stored in an HSM to eliminate the risks associated with stolen, corrupted, or misused keys.

    Client-side hashing ensures build performance and avoids unnecessary movement of files to provide a greater level of security

    The command line signing tool provides a faster method to sign requests in bulk

    Robust access control systems can be integrated with LDAP and customizable workflows to mitigate risks associated with granting wrong access to unauthorized users, allowing them to sign code with malicious certificates

    Support for customized workflows of an “M of N” quorum with multi-tier support of approvers

    Support for InfosSec policies to improve adoption of the solution and enable different business teams to have their own workflow for Code Signing

    Validation of code against UpToDate antivirus definitions for virus and malware before digitally signing it will mitigate risks associated with signing malicious code