CNSA 2.0 Is Quietly Exposing the Real Problem with Machine Trust
Authentication, Automotive, IAM, Industrial, Manufacturing, Defence, Defense MItch Ross Authentication, Automotive, IAM, Industrial, Manufacturing, Defence, Defense MItch Ross

CNSA 2.0 Is Quietly Exposing the Real Problem with Machine Trust

CNSA 2.0 is often discussed as a cryptography deadline. That is understandable. The move away from quantum-vulnerable public key algorithms is a major shift, and the new post-quantum standards matter.

But if the conversation stops at algorithms, it misses the larger issue. The post-quantum transition is forcing organizations to confront how machines establish trust in the first place.

Most systems still rely on objects that must be stored and later trusted: certificates, keys, tokens, shared secrets, static identities, and trust anchors. Those objects need to be issued, protected, rotated, revoked, audited, and eventually replaced. The larger and more distributed the environment becomes, the harder it is to defend.

CNSA 2.0 pulls on that thread. It not only asks whether the cryptography is strong enough. It asks whether the trust architecture underneath the product can survive the next era of security expectations.

Read More
Protecting Critical Infrastructure
Authentication, IAM, Industrial, Manufacturing, Defence, Defense, Zero Trust, Critical Infrastructure MItch Ross Authentication, IAM, Industrial, Manufacturing, Defence, Defense, Zero Trust, Critical Infrastructure MItch Ross

Protecting Critical Infrastructure

Critical infrastructure was built to keep operating.

Water treatment plants, power generation sites, electrical substations, traffic control systems, rail networks, ports, airports, and emergency services were designed around availability, safety, reliability, and continuity. In many cases, the systems that run them were built long before today’s threat environment existed.

That creates a difficult problem. The systems society depends on most are often the hardest to change. A PLC running part of a water treatment process may be too old to support modern security software. A substation device may be under warranty, certified, or too operationally sensitive to modify. A traffic control system may rely on equipment designed to communicate within a trusted municipal network, not across today’s connected infrastructure.

Security teams know these systems need stronger protection. Operators know they cannot risk disrupting them.

Read More
The Credential Problem: Why What We're Relying On to Stay Secure Is Already Broken
Defence, IoT, IAM, Industrial, Zero Trust, Automotive, Manufacturing, Authentication, Defense Jen Ross Defence, IoT, IAM, Industrial, Zero Trust, Automotive, Manufacturing, Authentication, Defense Jen Ross

The Credential Problem: Why What We're Relying On to Stay Secure Is Already Broken

Authentication is the front door to every system you own. And for most organizations, that door is held shut with a combination lock that a reasonably motivated teenager could crack. Not because the people managing it are careless. Because the underlying architecture was never built to handle what the threat landscape has become.

Read More
Quantum Resistant Cryptography
Defence, IoT, IAM, Industrial, Authentication, Manufacturing, Automotive, Defense, Zero Trust Zubair Quraishi Defence, IoT, IAM, Industrial, Authentication, Manufacturing, Automotive, Defense, Zero Trust Zubair Quraishi

Quantum Resistant Cryptography

Quantum computing changes the security planning horizon. Cryptographic methods that are acceptable today may become exposed as quantum capability matures, particularly where systems still rely on RSA, ECC, long-term certificates, or other trust artifacts rooted in mathematical problems that quantum algorithms are expected to weaken.

Read More
Securing Future Battlespaces
Defence, IoT, IAM, Industrial, Authentication, Automotive, Manufacturing, Zero Trust, Defense Jen Ross Defence, IoT, IAM, Industrial, Authentication, Automotive, Manufacturing, Zero Trust, Defense Jen Ross

Securing Future Battlespaces

Modern military operations now extend across land, sea, air, space, and cyberspace. The future battlespace will be defined by contested communications, autonomous systems, distributed sensors, AI-enabled decision support, coalition interoperability, and adversaries operating at machine speed.

Read More
Moving Beyond Passwords and MFA
Defence, IoT, IAM, Industrial, Defense, Authentication, Automotive, Manufacturing, Zero Trust Zubair Quraishi Defence, IoT, IAM, Industrial, Defense, Authentication, Automotive, Manufacturing, Zero Trust Zubair Quraishi

Moving Beyond Passwords and MFA

Passwords were never meant to carry the security burden now placed on them. They were created for a slower world, where users logged in, systems checked a stored secret, and access was treated as something that could be granted and remembered.

Read More
Zero Trust by Design and Default
Authentication, Automotive, IAM, Industrial, Manufacturing, Defence, Defense, Zero Trust, IoT Jen Ross Authentication, Automotive, IAM, Industrial, Manufacturing, Defence, Defense, Zero Trust, IoT Jen Ross

Zero Trust by Design and Default

Zero Trust has become a critical strategy for protecting networks, devices, applications, and data in an increasingly complex cybersecurity environment. But in practice, many Zero Trust programs still require multiple products, extensive configuration, and layers of policy wrapped around legacy trust assumptions.

Read More
kin vs. Credential-Based Authentication
Authentication, Automotive, IAM, Industrial, Manufacturing, Defence, Defense, Zero Trust, IoT Zubair Quraishi Authentication, Automotive, IAM, Industrial, Manufacturing, Defence, Defense, Zero Trust, IoT Zubair Quraishi

kin vs. Credential-Based Authentication

Most digital security architectures still begin with a familiar assumption: if an entity can present the right credential, it can be treated as trusted. That credential may be a password, certificate, static key, token, bearer credential, or identity assertion issued by a central authority.

Read More