Abstract

    Entrust announced the sale of its certificate authority business to Sectigo in January 2025, an event that will cause many enterprises to reevaluate their certificate lifecycle management strategy. Recent research by Informa TechTarget’s Enterprise Strategy Group into non-human identities (NHIs) revealed that digital certificates were of concern to enterprises,1 and the Entrust-Sectigo transaction reinforces the need for enterprises to maintain crypto agility to adapt to and recover from changes in cryptographic infrastructure. Enterprises should focus on gaining visibility into their expanding digital certificate estate in preparation for upcoming changes posed by shortening certificate validity periods and impending changes needed to prepare for post-quantum cryptography (PQC).

    1. Source: Enterprise Strategy Group Research Report, Managing Non-human Identities for an Effective Cybersecurity Program, December 2024. All research references and charts in this brief are from this report.