smallstep_full_white
  • Prevent Outages
  • Automate Compliance
  • Improve Certificate Issuance
  • Smallstep for SSH
  • Smallstep for Zero Trust
  • Integrations
  • step CLI
  • step-ca
  • Certificate Manager
  • Smallstep SSH
  • Smallstep Certificate Manager
  • Smallstep SSH Pro
  • Tutorials
  • mTLS
  • Step CLI
  • Step CA
  • About
  • Support
  • Status
  • Careers
BlogLoginSignup
smallstep_full_white
    • Prevent Outages
    • Automate Compliance
    • Improve Certificate Issuance
    • Smallstep for SSH
    • Smallstep for Zero Trust
    • Integrations
    • step CLI
    • step-ca
    • Certificate Manager
    • Smallstep SSH
    • Smallstep Certificate Manager
    • Smallstep SSH Pro
    • Tutorials
    • mTLS
    • Step CLI
    • Step CA
    • About
    • Support
    • Status
    • Careers
  • Blog
  • Login
  • Signup

Mike Malone

Filter by Tag: View all

    ACME
    Business
    CLI
    Production Identity
    SSH
    Step Certificates
    Technical

Filter by Author: View all

    Linda Ikechukwu
    Jenessa Petersen
    Alan Thomas
    Carl Tashian
    Herman Slatman
    J. Hunter Hawke
    Kevin Chen
    Max Furman
    Mike Maxey
    Mike Malone
    Sebastian Tiedtke
series-a-unfurl.png

How we got here, and where we are headed

By Mike Malone

We have secured our seed and Series A funding - this is a huge thank you to our investors and our community who believe in us and continue to help us make Production Identity a reality.

Mike-Malone.jpg

Read More >

smallstep-ssh-unfurl.png

Smallstep SSH

By Mike Malone

It took a lot of late nights and weekends to get here. I’m incredibly thankful for the work of our fantastic team, early access customers, and to their families for behind the scenes support. Today, we’re excited to announce the output of that work: the general availability of Smallstep SSH Professional Edition.

Mike-Malone.jpg

Read More >

bsides-sf-2020-unfurl.png

BSidesSF 2020 - If You're Not Using SSH Certificates You're Doing SSH Wrong

By Mike Malone

Video recording of the 10-minute lightning talk from Mike Malone on using SSH Certificates. This was recorded at BSidesSF 2020.

Mike-Malone.jpg

Read More >

iid-unfurl.png

Embarrassingly easy private certificate management for VMs on AWS, GCP, and Azure

By Mike Malone

step and step-ca (v0.11.0) adds support for cloud instance identity documents (IIDs), making it embarrassingly easy to get certificates to workloads running on public cloud virtual machines (VMs). This post introduces IID-based authentication with step and step-ca, and notes some interesting architectural and security details.

Mike-Malone.jpg

Read More >

If you’re not using SSH certificates you’re doing SSH wrong

By Mike Malone

SSH has some pretty gnarly issues when it comes to usability, operability, and security. The good news is this is all easy to fix. SSH is ubiquitous. It’s the de-facto solution for remote administration of *nix systems. SSH certificate authentication makes SSH easier to use, easier to operate, and more secure.

Mike-Malone.jpg

Read More >

Pass_rev-unfurl.png

Good certificates die young: what's passive revocation and how is it implemented?

By Mike Malone

If you're a normal human person you probably don't think much about certificate revocation. This post will help you justify your apathy. It will explain why your indifference is, in fact, the technically correct attitude to have regarding this particular detail of your system's security architecture.

Mike-Malone.jpg

Read More >

PKI-unfurl.png

Everything you should know about certificates and PKI but are too afraid to ask

By Mike Malone

Certificates and public key infrastructure (PKI) are hard. No shit, right? I know a lot of smart people who''ve avoided this particular rabbit hole. Eventually, I was forced to learn this stuff because of what it enables: PKI lets you define a system cryptographically. It''s universal and vendor-neutral yet poorly documented. This is the missing manual.

Mike-Malone.jpg

Read More >

step_certs-unfurl.png

Introducing step Certificates, secure, automated certificate management

By Mike Malone

Introducing step Certificates, an open-source project that makes secure automated certificate management easy, so you can use TLS and easily access anything, running anywhere, from everywhere. But step certificates is more than a certificate authority. It provides all the missing bits you need to run your own internal public key infrastructure (PKI).

Mike-Malone.jpg

Read More >

Use_TLS-unfurl.png

The case for using TLS everywhere

By Mike Malone

This post has a simple purpose: to persuade you to use TLS everywhere. By everywhere, I mean everywhere. Not just for the public internet, but for every internal service-to-service request. Not just between clouds or regions. Everywhere. Even inside production perimeters like VPCs. I suspect this will elicit a range of reactions from apathy to animosity. Regardless, read on.

Mike-Malone.jpg

Read More >

zerotrust-unfurl.png

Step: A New Zero Trust Swiss Army Knife from Smallstep

By Mike Malone

A better security model exists. Instead of relying on IP and MAC addresses to determine access we can cryptographically authenticate the identity of people and software making requests. It’s a simple concept, really: what matters is who or what is making a request, not where a request comes from. In short, access should be based on production identity

Mike-Malone.jpg

Read More >

Smallstep Icon Logo

Subscribe to updates

Unsubscribe anytime, see Privacy Policy

  • Twitter Icon
  • Linkedin Icon
  • Github Icon
  • Discord Icon

Learn

  • Blog
  • Try for free
  • Register for demo

Products

  • Certificate Manager
  • Smallstep SSH
  • ACME Registration Authority
  • Integrations

Pricing

  • Certificate Manager
  • Smallstep SSH

Documentation

  • Certificate Manager
  • Smallstep SSH
  • step-ca
  • Tutorials
  • Step command reference

Open Source

  • step-ca
  • Step CLI

About

  • About
  • Support
  • Status
  • Careers
  • © 2023 Smallstep Labs, Inc. All rights reserved
  • Security
  • Privacy
  • Terms & Conditions
  • Website Preferences
  • Do not sell my Data