As the previous Director of Security at companies like Linksys, Belkin, and Wink, I learned hard lessons about the pitfalls of PKI. This was especially true on IoT devices, where the responsibility was on consumers or site managers to update & fix devices when security issues arose. I’ve experienced expired keys that killed device connections, private keys being accidentally dropped on consumer devices, and breaches that required replacing all keys on devices, servers, and user applications.
By Brian Knopf
Full Abstract & Presentation Materials: https://www.blackhat.com/us-17/briefings.html#redesigning-pki-to-solve-revocation-expiration-and-rotation-problems