Are you in Miami right now? If not, we’re sad you’re missing Keyfactor Tech Days, our flagship customer conference. But don’t worry, we’ll catch you up on big announcements you need to know for 2025.
Keyfactor Command, a complete certificate lifecycle management platform, is introducing some exciting additions to improve visibility, provide actionable risk intelligence, and put our customers ahead of the PQC curve.
Hold onto your hats, we have a lot to cover.
Command Risk Intelligence: Actionable Risk, Right from Command
Command Risk Intelligence improves visibility and prioritizes operations for teams managing certificates and cryptographic assets
Command Risk Intelligence is an upcoming add-on module for Keyfactor’s cloud-hosted customers (PKIaaS or CLAaaS ). As organizations deploy and manage more certificates, and certificate lifecycles shorten, teams are pushed to do more with less resources. Moreover, as quantum computing accelerates, understanding risk exposure of cryptographic assets becomes even more critical.
Keyfactor Command Risk Intelligence is the world’s first certificate risk management solution, creating a new approach to managing certificates by providing organizations with several key benefits. Let’s dive in.
Improved Visibility with Advanced Discovery
With Command Risk Intelligence, we combine the largest Internet certificate database with Command’s existing comprehensive network, certificate authority (CA), server and workload scanning tools for true 360-degree visibility of all known and unknown certificates. These new capabilities are ideal for:
- Discovering certificates using your organization’s domains or lookalikes
- Uncovering shadow IT related to certificates on external endpoints
- Preparing for post-quantum cryptography with the most comprehensive discovery capabilities
Unmatched Risk Insights
Understand the risks associated with your certificates, including weak, non-compliant, and attack-prone certificates, based on a dynamic risk score. With advances in post-quantum cryptography and expanding certificate use cases, certificates are critical infrastructure for digital trust and can increasingly put an organization’s online presence at-risk if not managed and secured properly.
Using the dynamic risk score and details, customers can prioritize, search, and automate remediation right from Keyfactor Command
Weak and attack-prone certificates put an organization’s data at risk by giving attackers the opportunity to:
- Break cryptography
- Harvest sensitive data
- Imitate devices and communications
The risk is especially high for organizations manufacturing or deploying connected devices that transmit sensitive data like:
- Automobiles
- Medical devices
- Security cameras
- Point-of-sale devices
- Industrial control systems
With risk insights available directly from Keyfactor Command, your teams will be able to see risk details on every certificate inventoried.
Actionable Intelligence
After risks have been identified, teams can take action to remediate them through integrated capabilities in Command.
Teams can use search and automation capabilities in Command to quickly reissue and replace risk-prone certificates and ensure crypto-agility. And use collections to identify and track remediation progress on certificates with critical or high-risk scores or other risk factors deemed important to your organization.
Dynamic Risk Scoring: A Foundational and Research-based Approach
All this wouldn’t be possible without our dynamic risk score. Command Risk Intelligence uses an ML-powered prediction engine alongside other analyses to provide teams with a dynamic risk score and risk composition insights of every certificate inventoried in Keyfactor Command. Scoring factors include:
- ML-powered prediction engine using insights from billions of public certificates
- Quantum readiness assessment using NIST standards
- Vulnerability check against RSA factoring attacks
- Anomaly detection based on validity period, file size, or number of SANs
- Compliance assessment using X.509 and CA/B Forum standards
- Cross-inventory analysis to ensure certificates are where they should be
We’re using standards from some of the leading PKI guiding organizations, including CA/Browser Forum and NIST, to ensure customers have compliant and secure certificates. The dynamic risk score also builds on research by our Product Owner of Analytics & AI, JD Kilgallin, where over 435,000 certificates analyzed were identified as compromised. The research was published by the IEEE International Conference on Trust, Privacy, and Security in Intelligent Systems and Applications and has been referenced by more than 15 publications.
We’re excited for Keyfactor customers to get hands-on with Command Risk Intelligence to improve their visibility, prioritize their operations, and reduce risk.
Get Access to Command Risk Intelligence Today
Keyfactor Command PKIaaS or CLAaaS customers can request a demo and proof-of-concept to get their organization’s risk intelligence insights right from Command. It’s an easy, free, and no-commitment way to understand your certificate risk.
Because “seeing is believing” is a tried-and-true adage, we also recently put it to the test. Our brand-new report uncovers some alarming risks. We look at the numbers from the report and break it all down in our new blog. And if you’re lucky enough to be in Miami Beach at Keyfactor Tech Days, be sure to stop by our demo center to see it in action.
