Why Companies Will Need Better Intelligence and Security To Prosper in 2021

In response to the rise in sophistication and number of cyber attacks, the maximum term for certificate validity was shortened to one year in September 2020. We foresee that digital certificates’ validity terms will shorten again, as the browser community in the CA/Browser Forum are pushing for 90-day term. This adds pressure on teams to ensure proper inventory of their digital certificate portfolio. Failure to replace an expired digital certificate on business-critical domains will lead to the loss of critical services for customers and employees. Furthermore, an outage can weaken a company’s defenses against a cyber attack and putting customers’ personal data at risk of compromise. Companies need to prepare for this impending change now.

As companies continue to embrace third-party SaaS and cloud technology for the rapid global deployment of applications and solutions, 2021 will be a time to consolidate these efforts and tighten cyber security controls, even as we see a portion of the workforce returning to offices.

In December 2020, the EU’s General Data Protection Regulation (GDPR) took its first cross-border action since its inception in 2018, issuing a €450,000 fine to a large US tech company. Regardless of geography, companies are held accountable for data breaches under GDPR. This same regulation, however, has made domain registries redact WHOIS information, making it more difficult to identify and take enforcement action against cyber criminals abusing a brand. Companies cannot relax their defenses against data breaches, and have to go on the offensive, finding effective means to investigate and enforce on the threat actors infringing their privacy or intellectual property rights.

As we hope for a brighter 2021, we recognize the challenges that come with it. CSC advocates a Defense-in-Depth approach to protect our clients’ brand reputation and revenue:

• Enterprise-class: We are an ICANN- and registry-accredited enterprise-class provider that invests in our systems and security; including both staff training on cyber security, as well as a variety of processes and security controls.

• Secure portal access: Our portal access is secured with two-factor authentication, IP validation and federated identity for a single sign-on environment.

• Control user permissions: We enforce an authorized contact policy, alerting clients when there are changes in permissions, especially those with elevated permissions.

• Leverage advanced domain security features: Our proprietary, predictive modeling algorithm, identifies domain names that conduct business-critical work for our clients’ business operations and online brand, and we recommend security controls such as DNSSEC, registry locks, and DMARC on these vital domain names.

• Proactive, continuous monitoring and alerting: We monitor for unauthorized changes to your domains, DNS and digital certificates, as well as unauthorized use of brands within third-party-registered domains and websites, social media, marketplaces, mobile apps and more.