1min snip

RunAs Radio cover image

Microsoft Cloud PKI with Richard Hicks

RunAs Radio

NOTE

Secure Your Private Key: Protect with TPM

Certificates can effectively enhance security, but improper management of private keys poses significant risks. Merely marking a key as non-exportable does not guarantee protection, as local administrative access can circumvent these protections. Tools like Mimikatz can exploit vulnerabilities to extract private keys. To ensure robust authentication—both for users and devices—it's critical to protect private keys using Trusted Platform Module (TPM) technology. By binding keys to devices with TPM, organizations can mitigate the security challenges illustrated by past exploits, such as the Sony incidents, linked to poorly secured private keys.

00:00

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode