51% Claim Low Ability to Detect and Respond to Digital Certificate and Key Misuse.
Keyfactor and Ponemon Institute have released the 2020 edition of "The Impact of Unsecured Digital Identities," a benchmark report exploring enterprises' ability to manage increasing numbers of cryptographic keys and digital certificates securing network connections.
"Connectivity and the number of digital identities within the enterprise has grown exponentially thanks to continued cloud, mobile, DevOps and IoT adoption," said Chris Hickman, chief security officer at Keyfactor. "The complexity of managing those identities while keeping them securely connected to the business has created a critical trust gap--in many cases the keys and certificates designed to build trust are instead causing outages and security breaches."
Digital certificates and keys ensure authenticity across enterprise user, application and device identities. Cryptographic algorithms encrypt the data associated with those identities, providing secure communication and exploit protection. Two-thirds of respondents say their organization is adding additional layers of encryption to comply with industry regulations and IT policies; however, shorter certificate validity has doubled the management workload on short-staffed IT and security teams.
Additional key findings:
* Connected IoT increasing risk: 60% say they're adding additional layers of encryption technologies to secure IoT devices, but 46% admit low ability to maintain IoT device identities and cryptography over device lifetime.
* A rise in security incidents: on average...