By Debra Baker
CryptoDoneRight is now a nonprofit and has found a home at the Cloud Security Alliance.
Ever wonder what cryptographic algorithms to use? What is better for symmetric encryption, AES-CTR or AES-CBC? For that matter what is symmetric encryption. Is ECDSA or RSA better for encryption? It can quickly get confusing. In fact, there was a study done on the Usability of Deploying HTTPS and the results were not good. The study was from a fews years back, but is still accurate for today. The study found that configuring TLS securely is a daunting task and even experienced information security professional have trouble with implementing the most secure TLS configurations. From the study “Our results suggest that the deployment process is far too complex even for people with proficient knowledge in the field, and that server configurations should have stronger security by default.”
See the full blog post on the Cloud Security Alliance website: https://cloudsecurityalliance.org/blog/2022/09/09/crypto-done-right/
To learn more about what a vCISO is click here: https://trustedciso.com/what-is-a-vciso/
To learn more how TrustedCISO can advise your company on compliance and cybersecurity click here to Contact Us.