|30 September, 2018

Thales Report: IoT is the fastest growing force affecting PKI planning and evolution

Organizations apply stronger PKI security controls due to their increasingly critical role today

Thales Report: IoT is the fastest growing force affecting PKI planning and evolution
  • Fourth annual results based on a survey completed by 1,688 IT & IT security practitioners across the world including the Middle East
  • HSM use as an IoT root of trust is nascent, however 20% of Middle East (UAE + Saudi Arabia) users report using HSMs as an IoT root of trust

Dubai:– Thales, a leader in critical information systems, cybersecurity and data security, announces that the Internet of Things (IoT) is the fastest growing trend driving the deployment of applications that use public key infrastructure (PKI) as evidenced by its latest annual 2018 Global PKI Trends Study.

The report, based on independent research by the Ponemon Institute and sponsored by Thales, reveals continued and increased reliance on PKI as a core enterprise asset and a root of trust. Over the past few years, cloud applications, and now the IoT, are the newest disrupters to future PKI planning as organizations not only tend to the digital certificate needs of today, but must also simultaneously prepare for the future – a future with never-before-seen diversity and scale. 

While many of the traditional challenges to PKI adoption remain, such as a lack of clear ownership (78 percent in the Middle East), organizations are increasingly hiring PKI specialists and investing in additional security controls such as multi-factor authentication (62 percent). The findings, which reflect the responses of 1,600 IT security practitioners, demonstrate the current state of PKI maturity while hinting at future trends:

  • In the next two years, almost half (42 percent) of IoT devices will use digital certificates for authentication
  • As the IoT continues to grow, 27 per cent believe PKI deployments for device credentialing will live in the cloud, with 43 percent a combination of both enterprise and cloud
  • Enterprises are beginning to encrypt data from IoT devices with 49 percent of respondents either extensively or partially encrypting their IoT device data
  • IoT is the top trend driving deployment of PKI-enabled applications with a 23 percent increase from 2015
  • Middle East respondents are most likely to choose external hosted private certificate authorities as a managed service
  • Ranking important PKI capabilities necessary for IoT deployments, 45 percent of respondents cited scalability to millions of managed certificates as most important, followed by 39 percent who cited online revocation
  • The use of hardware security modules (HSMs) to secure PKI digital certificates to form a root of trust and enable strong authentication has increased to 39 percent
  • Forty-four percent of companies in the healthcare/pharmaceutical sector believe the IoT is one of the top two trends driving deployment of PKI applications
  • The industrial/manufacturing sector led the charge in growth of PKI usage with an average of 43,000 certificates under management

John Grimm, senior director security strategy, Thales eSecurity says:

“In this era of digital transformation, where companies are deploying digital technologies to improve their operations, deliver value to customers and gain competitive advantage, IoT initiatives invariably are the backbone of those efforts. Huge amounts of data are generated by and collected from a rapidly growing number of IoT devices, with the cloud playing a pivotal role in IoT solutions of the future. But there’s no point in collecting and analyzing that data, and making business decisions based upon it if you’re not able to trust the devices or their data. For safe, secure IoT deployments organizations need to embrace time-tested security techniques, like PKI, to ensure the integrity and security of their IoT systems.” 

Dr Larry Ponemon, chairman and founder of The Ponemon Institute, says:
“In previous years, we highlighted PKI as an established technology positioned to tackle the authentication needs and challenges to support the rise of cloud applications. Now, the C-suite is challenging its teams to leverage IoT to improve and drive business. With this comes the increased risk of more endpoints to protect, and the need to understand the role of PKI as a critical enabler. At the same time, this underscores the need for further advancement in skilling and resourcing related to PKI and the overall ownership within the organization.”

Download your copy of the new 2018 Global PKI Trends Study.

Industry insight and views on the latest data security trends can be found on the Thales eSecurity blog at blog.thalesesecurity.com.

-Ends- 

About Thales eSecurity

Thales eSecurity is a leader in advanced data security solutions and services that deliver trust wherever information is created, shared or stored. We ensure that the data belonging to companies and government entities is both secure and trusted in any environment – on-premises, in the cloud, in data centers or big data environments – without sacrificing business agility. Security doesn’t just reduce risk, it’s an enabler of the digital initiatives that now permeate our daily lives – digital money, e-identities, healthcare, connected cars and, with the internet of things (IoT), even household devices. Thales provides everything an organization needs to protect and manage its data, identities and intellectual property, and meet regulatory compliance – through encryption, advanced key management, tokenization, and privileged-user control and high-assurance solutions. Security professionals around the globe rely on Thales to confidently accelerate their organization’s digital transformation. Thales eSecurity is part of Thales Group.

About Thales

The people we all rely on to make the world go round – they rely on Thales. Our customers come to us with big ambitions: to make life better, to keep us safer. Combining a unique diversity of expertise, talents and cultures, our architects design and deliver extraordinary high technology solutions. Solutions that make tomorrow possible, today.  From the bottom of the oceans to the depth of space and cyberspace, we help our customers think smarter and act faster - mastering ever greater complexity and every decisive moment along the way. With 65,000 employees in 56 countries, Thales reported sales of €15.8 billion in 2017.

Contact:

Constance Arnoux                                                                                                                                       

Thales Media Relations – Security                            

+33 (0)6 44 12 16 35                                                         

constance.arnoux@thalesgroup.com                     

Liz Harris 

Thales eSecurity Media Relations

+44 (0)1223 723612

liz.harris@thales-esecurity.com

© Press Release 2018

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.

More From Press Releases