SlideShare a Scribd company logo

Best Practices for Certificate Management

AppViewX, profile picture
AppViewX

The document outlines best practices for effective certificate management, emphasizing the importance of an organized certificate lifecycle that includes issuance, monitoring, renewal, and revocation processes. It highlights the need for automation, visibility, and structured policies to prevent security threats like expirations and breaches. Furthermore, using dedicated tools for lifecycle management can enhance compliance and efficiency while reducing risks and costs associated with certificate management.

Technology
1 of 16
1
2
Most read
3
4
5
Most read
6
7
8
9
10
11
Most read
12
13
14
15
16
© 2019 AppViewX, Inc. 1 Best Practices for Certificate Management
© 2019 AppViewX, Inc. The Certificate Lifecycle 2 Issuance CSR generation Provisioning Servers, Applications, Devices, et al. Discovery Scan and locate certificates Inventory Group certificates and managed entities Monitoring Dynamic reporting and auditing Renewal Pre-emptive, to prevent expiry Revocation On invalidity Security Encrypting private key storage
© 2019 AppViewX, Inc. Obstacles to Effective PKI Management 3 Manual Management No Granular RBAC Poor Auditing, Inefficient Policy Siloed Inventories Undocumented, Unknown Certificates Insecure Private Key Storage Increase chances of theft and data breaches
© 2019 AppViewX, Inc. o Following a defined certificate management process helps administrators streamline the lifecycle of their internal and external PKI. o It eliminates all the aforementioned challenges from the equation by introducing automation, visibility, and structure into the equation. o The ideal certificate management process assists in the execution of every step in the certificate lifecycle by integrating with your network, devices, and CAs. Core Principles of Certificate Lifecycle Management 6
© 2019 AppViewX, Inc. o Following the recommended best practices for certificate management will help enterprises actively combat security threats such as expirations, vulnerabilities, and certificate-related outages, downtimes, or breaches. o The use of a dedicated certificate lifecycle management tool is highly recommended. The Best Practices for Certificate Management Obtain Visibility Maintain Inventory Enforce Policy Protect Private Keys Enable Monitoring 7
© 2019 AppViewX, Inc. o Scan your entire network: across all CAs, environments, and endpoints, to detect and locate the certificates in your inventory. o Perform subnet scans across all the ports in batches of 24 or more to locate public certificates and IP/host names. o Perform a controlled discovery scan by batching the subnet list and choosing between parallel or sequential execution, with cooling periods to avoid network load and chatter. o Perform scans in the schedule maintenance window to avoid firewall issues. o Schedule the scans to run overnight or during periods of low network traffic. o Perform passive scans in parallel over a scheduled change window period. o Ensure that discovery scans are run periodically to ensure an updated inventory. Obtaining Visibility 6
© 2019 AppViewX, Inc. o Ensure that the results of the scan are automatically updated in the inventory and categorized. o Group certificates to simplify batch operations. Recommended groups include: 1. AD Security Group vs. Department 2. Test vs. Production 3. Internal vs. External hierarchy 4. Auto-renewal vs. Approved CSRs o Provide group owner details during configuration for simpler tracking. o Group based on hierarchy to leverage alert escalation capabilities in workflows. o Maintain the same (or similar) policy across a hierarchy of groups. Maintaining Inventory 7
© 2019 AppViewX, Inc. o Ensure that CSR parameters are defined as per industry guidelines (NIST). o Renewal: Define automated renewal mechanisms for certificates whose validities are past 80% of their validity periods. o Revocation: Revoke any certificate whose private key is suspected to be compromised. Post-renewal, ensure that the old certificate is revoked within 5 days of testing and installation. o Schedule automated bi-weekly emails that provide notification on expirations and compliance. o Establish contracts with backup CAs to enable rapid transition in the event of a compromise. o Enforce RBAC based on certificate groups and users to permit access only to relevant user personas. Enforcing Policy 8
© 2019 AppViewX, Inc. o Encrypt and store private keys and credentials at rest. o Leverage FIPS 140-2 standards while safeguarding critical data at rest. o Use vaults or HSMs to store private keys. o Use automation workflows within the system to push certificates and their keys to network endpoints. o Provide key access to users on a scheduled, role-based, on-demand, and privileged basis. o Provide training to users across hierarchies on the access, storage, and application of private keys in the network environment. Protecting Private Keys 9
© 2019 AppViewX, Inc. o Create dynamic dashboards that display certificate information at a glance: statuses, expired certificates, unwanted certificates, et al. o Set up workflows to send emails to administrators when a certificate is expiring/has expired. o Configure weekly reports that showcase the status of the certificate infrastructure. o Track hosting environments for weak ciphers, algorithms, or transport security protocols. o Monitor global certificate issuance with transparency logs published on the internet. o Closely track a single client certificate hosted on multiple endpoints. o Set up scheduled reports to specific certificate owners by grouping certificates to avoid unnecessary noise. Enabling Monitoring 10
© 2019 AppViewX, Inc. AppViewX CERT+: Certificate Lifecycle Automation Platform 11
© 2019 AppViewX, Inc. AppViewX CERT+: Holistic View of the Chain of Trust 12
© 2019 AppViewX, Inc. AppViewX CERT+: Seamless Monitoring and Reporting 13
© 2019 AppViewX, Inc. Benefits of Certificate Lifecycle Automation ELIMINATE ERRORS Reduce the margin of error due to manual operation to zero. ENFORCE COMPLIANCE Use stringent RBAC, audit trails, and more to manage policy. MOVE FASTER Accelerate certificate operations via automation. REDUCE COST Minimize complexity, save time, and prevent catastrophic outages. 14
© 2019 AppViewX, Inc. Business Benefits Reduce Risk, Cost, and Delays in Certificate Management Reduction in Issuance Time Reduction in Deployment Time Reduction in Validation Time 83% 70%70% 15
© 2019 AppViewX, Inc. Schedule a Live Demo

More Related Content

PPTX
(ISC)2 CCSP - Certified Cloud Security Professional
Hatem ElSahhar
 
PDF
PKI in DevOps: How to Deploy Certificate Automation within CI/CD
DevOps.com
 
PPTX
HITRUST Certification
ControlCase
 
PDF
HITRUST 101: All the basics you need to know
➲ Stella Bridges
 
PPTX
Identity Management
Venkatesh Jambulingam
 
PPTX
Vapt life cycle
penetration Tester
 
PPTX
Cloud Audit and Compliance
Quadrisk
 
PDF
Shift Left Security
BATbern
 
(ISC)2 CCSP - Certified Cloud Security Professional
Hatem ElSahhar
 
PKI in DevOps: How to Deploy Certificate Automation within CI/CD
DevOps.com
 
HITRUST Certification
ControlCase
 
HITRUST 101: All the basics you need to know
➲ Stella Bridges
 
Identity Management
Venkatesh Jambulingam
 
Vapt life cycle
penetration Tester
 
Cloud Audit and Compliance
Quadrisk
 
Shift Left Security
BATbern
 

What's hot (20)

PDF
A Big Picture of IEC 62443 - Cybersecurity Webinar (2) 2020
Jiunn-Jer Sun
 
PDF
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Edureka!
 
PDF
Secure Systems Security and ISA99- IEC62443
Yokogawa1
 
PDF
introduction to Azure Sentinel
Robert Crane
 
PDF
Cybersecurity Roadmap Development for Executives
Krist Davood - Principal - CIO
 
PPTX
NIST CyberSecurity Framework: An Overview
Tandhy Simanjuntak
 
PPSX
Next-Gen security operation center
Muhammad Sahputra
 
PPTX
Cism course ppt
sophiarock123
 
PPTX
Soc 2 attestation or ISO 27001 certification - Which is better for organization
VISTA InfoSec
 
PPTX
7 Steps to Build a SOC with Limited Resources
LogRhythm
 
PPTX
Iso 27001 isms presentation
Midhun Nirmal
 
PDF
DTS Solution - Building a SOC (Security Operations Center)
Shah Sheikh
 
PDF
ISO 27001 - IMPLEMENTATION CONSULTING
Arul Nambi
 
PDF
Building Security Operation Center
S.E. CTS CERT-GOV-MD
 
PPTX
Beginner's Guide to SIEM
AlienVault
 
PDF
Penetration Testing Tutorial | Penetration Testing Tools | Cyber Security Tra...
Edureka!
 
PDF
INCIDENT RESPONSE NIST IMPLEMENTATION
Sylvain Martinez
 
PDF
Cybersecurity roadmap : Global healthcare security architecture
Priyanka Aash
 
PPT
SOC presentation- Building a Security Operations Center
Michael Nickle
 
PDF
Enterprise Security Architecture for Cyber Security
The Open Group SA
 
A Big Picture of IEC 62443 - Cybersecurity Webinar (2) 2020
Jiunn-Jer Sun
 
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Edureka!
 
Secure Systems Security and ISA99- IEC62443
Yokogawa1
 
introduction to Azure Sentinel
Robert Crane
 
Cybersecurity Roadmap Development for Executives
Krist Davood - Principal - CIO
 
NIST CyberSecurity Framework: An Overview
Tandhy Simanjuntak
 
Next-Gen security operation center
Muhammad Sahputra
 
Cism course ppt
sophiarock123
 
Soc 2 attestation or ISO 27001 certification - Which is better for organization
VISTA InfoSec
 
7 Steps to Build a SOC with Limited Resources
LogRhythm
 
Iso 27001 isms presentation
Midhun Nirmal
 
DTS Solution - Building a SOC (Security Operations Center)
Shah Sheikh
 
ISO 27001 - IMPLEMENTATION CONSULTING
Arul Nambi
 
Building Security Operation Center
S.E. CTS CERT-GOV-MD
 
Beginner's Guide to SIEM
AlienVault
 
Penetration Testing Tutorial | Penetration Testing Tools | Cyber Security Tra...
Edureka!
 
INCIDENT RESPONSE NIST IMPLEMENTATION
Sylvain Martinez
 
Cybersecurity roadmap : Global healthcare security architecture
Priyanka Aash
 
SOC presentation- Building a Security Operations Center
Michael Nickle
 
Enterprise Security Architecture for Cyber Security
The Open Group SA
 
Ad

Similar to Best Practices for Certificate Management (20)

PDF
App viewx cert+
AppViewX
 
PDF
CERT_ver-1.4
Abin Abraham
 
PDF
AppViewX CERT+ Brochure
AppViewX
 
PDF
RSAC2013 CME Group case study
Venafi
 
PDF
Easing the Pains of Certificate Management
Entrust Datacard
 
PDF
eBook_PKI-AreYouDoingItWrong2022-f.pdf
HaNguyenThanh21
 
PPTX
Venafi 2012 risk audit survey findings
nickjplott
 
PPT
Computer Security Test
khant14
 
PPTX
Infrastructure Saturday 2011 - Understanding PKI and Certificate Services
kieranjacobsen
 
PDF
How EverTrust Horizon PKI Automation can help your business?
mirmaisam
 
PPT
PKI by Gene Itkis
Information Security Awareness Group
 
PDF
Is web security part of your annual security audit
Dianne Douglas
 
PPTX
Public Key Infrastructures
Zefren Edior
 
PDF
Certificate Management Made Easy
Jason Newell
 
PDF
Case study
Shehrevar Davierwala
 
PDF
Four Must Know Certificate and Key Management Threats That Can Bring Down You...
Venafi
 
PPTX
Build and Operate Your Own Certificate Management Center of Mediocrity
T.Rob Wyatt
 
PPTX
Kent King - PKI: Do You Know Your Exposure?
centralohioissa
 
PPTX
EC PKI Training on-prem and cloud-based PKI
ParnashreeSaha
 
PDF
Rfc3280
leekisung
 
App viewx cert+
AppViewX
 
CERT_ver-1.4
Abin Abraham
 
AppViewX CERT+ Brochure
AppViewX
 
RSAC2013 CME Group case study
Venafi
 
Easing the Pains of Certificate Management
Entrust Datacard
 
eBook_PKI-AreYouDoingItWrong2022-f.pdf
HaNguyenThanh21
 
Venafi 2012 risk audit survey findings
nickjplott
 
Computer Security Test
khant14
 
Infrastructure Saturday 2011 - Understanding PKI and Certificate Services
kieranjacobsen
 
How EverTrust Horizon PKI Automation can help your business?
mirmaisam
 
PKI by Gene Itkis
Information Security Awareness Group
 
Is web security part of your annual security audit
Dianne Douglas
 
Public Key Infrastructures
Zefren Edior
 
Certificate Management Made Easy
Jason Newell
 
Case study
Shehrevar Davierwala
 
Four Must Know Certificate and Key Management Threats That Can Bring Down You...
Venafi
 
Build and Operate Your Own Certificate Management Center of Mediocrity
T.Rob Wyatt
 
Kent King - PKI: Do You Know Your Exposure?
centralohioissa
 
EC PKI Training on-prem and cloud-based PKI
ParnashreeSaha
 
Rfc3280
leekisung
 
Ad

More from AppViewX (20)

PPTX
Accelerate Digital Transformation with Application Delivery Automation
AppViewX
 
PPTX
The TLS Upgrade
AppViewX
 
PPTX
Network Automation and Microservices Application
AppViewX
 
PPTX
AppViewX and Ansible
AppViewX
 
PPTX
What is NetOps? | NetOps Transformation
AppViewX
 
PDF
Network Security Automation_Solution Brief
AppViewX
 
PDF
Application Delivery Automation_Solution Brief
AppViewX
 
PDF
AppViewX Automation+ brochure
AppViewX
 
PDF
AppViewX Platform Brochure
AppViewX
 
PDF
AppViewX| Case study - Automated server rotations save healthcare consortium ...
AppViewX
 
PDF
AppViewX|Case study - Largest US telecommunication company builds agile adc i...
AppViewX
 
PDF
Webinar what's new in avx 12.0 AppViewX
AppViewX
 
PDF
Webinar unlock the power of adc management and automation AppViewX
AppViewX
 
PDF
Webinar The New Automation+ developed for Net-ops agility- Appviewx
AppViewX
 
PDF
Webinar start your automation journey AppViewx
AppViewX
 
PDF
Operational Efficiency Increases by 40% for Multinational Hotel Chain
AppViewX
 
PDF
Large Financial Services Company Reduces Deployment Time by 75%
AppViewX
 
PDF
Global Financial Firm Simplifies Cisco ANM Migration
AppViewX
 
PDF
Orchestration Engine For Complete Change Automation
AppViewX
 
PDF
Automated Server Rotations Save Healthcare Consortium Millions of Dollars
AppViewX
 
Accelerate Digital Transformation with Application Delivery Automation
AppViewX
 
The TLS Upgrade
AppViewX
 
Network Automation and Microservices Application
AppViewX
 
AppViewX and Ansible
AppViewX
 
What is NetOps? | NetOps Transformation
AppViewX
 
Network Security Automation_Solution Brief
AppViewX
 
Application Delivery Automation_Solution Brief
AppViewX
 
AppViewX Automation+ brochure
AppViewX
 
AppViewX Platform Brochure
AppViewX
 
AppViewX| Case study - Automated server rotations save healthcare consortium ...
AppViewX
 
AppViewX|Case study - Largest US telecommunication company builds agile adc i...
AppViewX
 
Webinar what's new in avx 12.0 AppViewX
AppViewX
 
Webinar unlock the power of adc management and automation AppViewX
AppViewX
 
Webinar The New Automation+ developed for Net-ops agility- Appviewx
AppViewX
 
Webinar start your automation journey AppViewx
AppViewX
 
Operational Efficiency Increases by 40% for Multinational Hotel Chain
AppViewX
 
Large Financial Services Company Reduces Deployment Time by 75%
AppViewX
 
Global Financial Firm Simplifies Cisco ANM Migration
AppViewX
 
Orchestration Engine For Complete Change Automation
AppViewX
 
Automated Server Rotations Save Healthcare Consortium Millions of Dollars
AppViewX
 

Recently uploaded (20)

PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Encapsulation theory and applications.pdf
gurumoop
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
A Presentation on Artificial Intelligence
memembruh336
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 

Best Practices for Certificate Management

  • 1. © 2019 AppViewX, Inc. 1 Best Practices for Certificate Management
  • 2. © 2019 AppViewX, Inc. The Certificate Lifecycle 2 Issuance CSR generation Provisioning Servers, Applications, Devices, et al. Discovery Scan and locate certificates Inventory Group certificates and managed entities Monitoring Dynamic reporting and auditing Renewal Pre-emptive, to prevent expiry Revocation On invalidity Security Encrypting private key storage
  • 3. © 2019 AppViewX, Inc. Obstacles to Effective PKI Management 3 Manual Management No Granular RBAC Poor Auditing, Inefficient Policy Siloed Inventories Undocumented, Unknown Certificates Insecure Private Key Storage Increase chances of theft and data breaches
  • 4. © 2019 AppViewX, Inc. o Following a defined certificate management process helps administrators streamline the lifecycle of their internal and external PKI. o It eliminates all the aforementioned challenges from the equation by introducing automation, visibility, and structure into the equation. o The ideal certificate management process assists in the execution of every step in the certificate lifecycle by integrating with your network, devices, and CAs. Core Principles of Certificate Lifecycle Management 6
  • 5. © 2019 AppViewX, Inc. o Following the recommended best practices for certificate management will help enterprises actively combat security threats such as expirations, vulnerabilities, and certificate-related outages, downtimes, or breaches. o The use of a dedicated certificate lifecycle management tool is highly recommended. The Best Practices for Certificate Management Obtain Visibility Maintain Inventory Enforce Policy Protect Private Keys Enable Monitoring 7
  • 6. © 2019 AppViewX, Inc. o Scan your entire network: across all CAs, environments, and endpoints, to detect and locate the certificates in your inventory. o Perform subnet scans across all the ports in batches of 24 or more to locate public certificates and IP/host names. o Perform a controlled discovery scan by batching the subnet list and choosing between parallel or sequential execution, with cooling periods to avoid network load and chatter. o Perform scans in the schedule maintenance window to avoid firewall issues. o Schedule the scans to run overnight or during periods of low network traffic. o Perform passive scans in parallel over a scheduled change window period. o Ensure that discovery scans are run periodically to ensure an updated inventory. Obtaining Visibility 6
  • 7. © 2019 AppViewX, Inc. o Ensure that the results of the scan are automatically updated in the inventory and categorized. o Group certificates to simplify batch operations. Recommended groups include: 1. AD Security Group vs. Department 2. Test vs. Production 3. Internal vs. External hierarchy 4. Auto-renewal vs. Approved CSRs o Provide group owner details during configuration for simpler tracking. o Group based on hierarchy to leverage alert escalation capabilities in workflows. o Maintain the same (or similar) policy across a hierarchy of groups. Maintaining Inventory 7
  • 8. © 2019 AppViewX, Inc. o Ensure that CSR parameters are defined as per industry guidelines (NIST). o Renewal: Define automated renewal mechanisms for certificates whose validities are past 80% of their validity periods. o Revocation: Revoke any certificate whose private key is suspected to be compromised. Post-renewal, ensure that the old certificate is revoked within 5 days of testing and installation. o Schedule automated bi-weekly emails that provide notification on expirations and compliance. o Establish contracts with backup CAs to enable rapid transition in the event of a compromise. o Enforce RBAC based on certificate groups and users to permit access only to relevant user personas. Enforcing Policy 8
  • 9. © 2019 AppViewX, Inc. o Encrypt and store private keys and credentials at rest. o Leverage FIPS 140-2 standards while safeguarding critical data at rest. o Use vaults or HSMs to store private keys. o Use automation workflows within the system to push certificates and their keys to network endpoints. o Provide key access to users on a scheduled, role-based, on-demand, and privileged basis. o Provide training to users across hierarchies on the access, storage, and application of private keys in the network environment. Protecting Private Keys 9
  • 10. © 2019 AppViewX, Inc. o Create dynamic dashboards that display certificate information at a glance: statuses, expired certificates, unwanted certificates, et al. o Set up workflows to send emails to administrators when a certificate is expiring/has expired. o Configure weekly reports that showcase the status of the certificate infrastructure. o Track hosting environments for weak ciphers, algorithms, or transport security protocols. o Monitor global certificate issuance with transparency logs published on the internet. o Closely track a single client certificate hosted on multiple endpoints. o Set up scheduled reports to specific certificate owners by grouping certificates to avoid unnecessary noise. Enabling Monitoring 10
  • 11. © 2019 AppViewX, Inc. AppViewX CERT+: Certificate Lifecycle Automation Platform 11
  • 12. © 2019 AppViewX, Inc. AppViewX CERT+: Holistic View of the Chain of Trust 12
  • 13. © 2019 AppViewX, Inc. AppViewX CERT+: Seamless Monitoring and Reporting 13
  • 14. © 2019 AppViewX, Inc. Benefits of Certificate Lifecycle Automation ELIMINATE ERRORS Reduce the margin of error due to manual operation to zero. ENFORCE COMPLIANCE Use stringent RBAC, audit trails, and more to manage policy. MOVE FASTER Accelerate certificate operations via automation. REDUCE COST Minimize complexity, save time, and prevent catastrophic outages. 14
  • 15. © 2019 AppViewX, Inc. Business Benefits Reduce Risk, Cost, and Delays in Certificate Management Reduction in Issuance Time Reduction in Deployment Time Reduction in Validation Time 83% 70%70% 15
  • 16. © 2019 AppViewX, Inc. Schedule a Live Demo

Editor's Notes

  • #16: Ref: http://www.appviewx.com/media-giant-reduces-ssl-certificate-deployment-time-by-up-to-70/