The TRUST Pod

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust.This episode features hosts Candice Smith and AshvinShukal as they dive deep into the concept of “Return on Integrity.” Together, they explore why integrity must serve as the foundational "operating system" for modern organizations, allowing them to move beyond technology alone to build lasting digital trust through the people andvalues behind the tools.The conversation digs into measuringintegrity, the tension between short-term financial gains and long-term brand value, and the concept of “trust dividends”, tangible benefits like heightened customer loyalty, operational agility, and improved business resilience.It also surfaces why leadership must model these values tofoster a truly ethical culture, how to make trust metrics visible to boards and senior stakeholders, and why in an era of AI and automated agents, integrity has become the most valuable currency a business can trade in.For more insights on digital trust and cyber security,follow us on [linkedin.com/company/the-trust-pod] LinkedIn.If you found this episode helpful, please rate, review, andsubscribe.

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust.  This episode brings together Candice, Ashvin and guest Vriti Magee, Founder of Mawa:ga, an applied strategy lab forResponsible AI, to explore how enterprises can ride the AI wave while keeping digital trust at the centre, using guardrails rather than walls so teams can safely experiment without putting customers or reputation at risk.​The conversation digs into practical AI governance and ML SecOps, the tension and harmony between security and innovation, and the idea of “return on integrity” as a way to measure trust dividends alongside traditional ROI. It also surfaces what is really on Australian boards’ minds, how to handle vendor and supply-chain complexity, and why trustworthy AI ultimately depends on the strength of the systems, processes, and culture it is built upon.For more insights on digital trust and cyber security, follow us on [linkedin.com/company/the-trust-pod]LinkedIn.  If you found this episode helpful, please rate, review, and subscribe.

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust.  In this episode, the hosts - Ashvin Shukal and Candice Smith discuss significant changes in the digital certificate landscape, particularly the shortening of certificate lifespans as mandated by the CAB Forum. They explore the implications of these changes for businesses, including the need for automation in certificate management and the importance of achieving crypto agility. The conversation highlights the challenges organizations face in adapting to these changes, the necessity for visibility and governance in digital trust management, and strategies for preparing for the upcoming shifts in theindustry.Takeaways:- The CAB Forum has approved the shortening of certificate lifespans.- Certificates will go from 397 days to 200 days by March 2026.- Domain validation reuse will decrease from 12 months to 10 days.- Automation is crucial for managing the new certificate lifecycle.- Businesses need to improve visibility of their digital certificates.- Crypto agility is essential for adapting to future changes.- Certificate pinning is becoming less favored in favor of crypto agility.- Organizations must consolidate certificate management across teams.- Digital trust management should involve senior leadership.- There are tools available to simplify the transition to automation.For more insights on digital trust and cyber security, follow us on [linkedin.com/company/the-trust-pod] LinkedIn.  If you found this episode helpful, please rate, review, and subscribe

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust.   Join Candice Smith and Ashvin Shukal, as they share key insights from their conversations at AISA CyberCon 2024, one of Australia's largest cybersecurity conferences. In this episode, they interview industry leaders about digital identity, quantum computing, AI security challenges, and diversity in cybersecurity. Featured guests include Rajiv Shah from MDR Consulting, discussing Australia's Digital ID Act, Hani Koshaji from Skillfield , exploring AI's evolving role in cybersecurity, and several other experts sharing their perspectives on the future of the industry. Discover the latest trends, concerns, and innovations shaping the cybersecurity landscape in Australia and beyond.   Featured Industry Experts: Rajiv Shah Hani Koshaji Raheem Sar Roma Singh Pranali Madewalkar Ross Khan Jose Bishop Daanish Antulay   For more insights on digital trust and cyber security, follow us on [linkedin.com/company/the-trust-pod] LinkedIn.   If you found this episode helpful, please rate, review, and subscribe! 

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust.   In this episode, hosts Candice Smith and Ashvin Shukal sit down with Ashoke Kulandaivel, an industry expert with 18 years of experience in PKI (Public Key Infrastructure) and cryptography. Together, they dive into the critical topic of certificate discovery and why it's essential for organizations to understand and manage their digital certificates in today's complex digital environment.  Ashoke breaks down the certificate discovery process, highlighting its importance in preventing outages, strengthening security, and preparing for future challenges like quantum computing. The conversation covers key risks of unmanaged certificates, the benefits of using CA-agnostic tools, and offers practical strategies that organizations of all sizes can adopt to stay secure and compliant.   The team tackles real-world incidents, like Microsoft Teams and SpaceX outages, and provide insights into balancing security with operational convenience, offering actionable advice for those managing segmented or air-gapped environments.  Stay tuned for our next episode, where we’ll explore the next pillar of Gartner's seven-step framework for certificate lifecycle management.  Key Topics Covered:  What is certificate discovery and why it matters.  The importance of having a "Central Book of Record" for cryptographic assets.  Risks of unmanaged certificates: outages, duplicate certificates, and compromised cryptographic keys.  Practical solutions for mid-tier to large organizations, including CA-agnostic tools and open-source options.  Real-world examples of outages related to certificate management risks.  Planning discovery mechanisms for specific network environments.  Preparing for the future: quantum computing and evolving cryptographic standards.  Ashoke Kulandaivel is a PKI and cryptography veteran with extensive experience as a consultant, architect, and product manager. Having worked with major enterprises and financial institutions, Ashoke shares his knowledge on implementing robust certificate discovery and management practices.  For more insights on digital trust and PKI management, follow us on [linkedin.com/company/the-trust-pod] LinkedIn.   If you found this episode helpful, please rate, review, and subscribe! 

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust.   In this episode, Lindsay Hansen joins Ashvin Shukal and Candice Smith to discuss the first of the Gartner core functions of Certificate Lifecycle Management - "Centralized Governance and Control and Decentralized Issuance". Lindsay emphasizes the need for visibility and management of certificates, as well as the challenges organizations face with multiple CA sources. He highlights the importance of digital trust and the role it plays in business continuity, and the benefits of working with suppliers with experience and expertise when evaluating CLM tools.   Stay tuned as we bring in industry experts in upcoming episodes to focus on each of these functions with real-world insights.

Welcome to “The TRUST Pod,” Australia’s premier podcast on Digital Trust. In this episode, we are diving into Public Key Infrastructure (PKI) and certificate lifecycle management. We discuss the seven core functions of certificate lifecycle management outlined by Gartner, highlighting the need for centralized governance, discovery, and automation to enhance security and mitigate risks. With today's complex IT infrastructure and diverse authentication needs, it'scrucial for organizations to adopt CA-agnostic CLM tools to streamline certificate operations and build crypto agility to stay ahead with quantum-safe cryptography and future-proof your business-critical systems. Stay tuned as we bring in industry experts in upcoming episodes to focus on each of these functions with real-world insights.

Welcome to The TRUST Pod!  Hosted by Candice Smith and Ashvin Shukal, The Trust Pod dives deep into the intricate world and evolving landscape of Digital Trust.    In this episode, we explore the significance of code signing and software supply chain trust, and new baseline requirements for secure key storage. We also touch on related practices like the SBOM (Software Bill of Materials) and the SALSA framework. We aim to shed light on the best practices for code signing, navigating through the challenges of maintaining security while meeting the fast-paced demands of software development.   Join us as we embark on this journey, discussing trends and practical advice to enhance your understanding of digital trust. Whether you are a developer, a security professional, or simply keen on staying informed about digital security, The Trust Pod is your essential guide in the ever-evolving world of Digital Trust.