So joining. I'm Bindi. I am with a new CSAIL at a company called Digistr. Digistr is, the project the graphics solutions.We work over 90 the world's 500 business, which is what my talk today. Trust in the digital world. What that means. A little bit of me. So I'm honored to be here today. Thank you all for taking time out of your schedules to join here this be a part of this conversation. As mentioned, so we're we'll counsel AI. We're looking to implement ethical, responsible to your baseline performance and predictions, when we're doing artificial intelligence in our environment. I also work professional show episodes, and built on various industry standards in organization. So we'll try to change in this seriously evolving landscape. And Paramount, all those I'm a mom, and I absolutely love learning and growing up with my daughter.

So when we talk about digital trust and we talk about it, those personal in this conversation. So I typically like to this more interactive, but, I don't think this format for it. When we think of trust, if folks just take us back in, what is trust to us? Right? It's the, the safety and the insurance get that whatever in or it's physical or digital or what have you, that fake direct truck that you put into the other side of that equation, allows to have a sense of and feel best. And it's no different to talk about a digital ecosystem. Let's go through the story of of anchor organization. Go on to the digital side. So, oh, let me scenario. You're prepared for national a a journal which is entirely on the past every step of the way. So trust starts when you're applying for your passport. Right?

The process starts long before you even get to your passport. To apply for your identity and citizenship. So you gather your birth certificate, Social Security card, other purse with these as a trusted artifact. Right? Evidence, verify who you are. So the government validates these documents against trust of Right? So it's source if you will. And if everything out, issued that for that little is more than globally of choice, vouched for your home country. Now fast forward to that, you your report, packed your alive at the terminal, and now you feel already checked. Right? You hand over for it, pass. And here, there's layers in play as well. Right? We have personal identity verification.

So the airport security officer examine your passport and match photo to your They trust that the government has all been permitted and verified with it. Then your as a scheme to ensure that you authorize. Right? So step one, authentication. Step two, authorization. So you've been authorized to travel. The airline or it's secured operations to message either system to confirm your details. Then you pass the security thing. You're implicitly trusted to not prohibit Right? They have a list of what those are depending where you're traveling to from. And then technology is left in the process, verify or compliance, that you're in those things in. Yeah. So that entire balance is a that value trusted systems between government and services.

But we're not sure if you're and security protocols are all working together, ensure that your journey is secure. Now let's bring this into the digital world. Just like support and security check process, digital trends operates on multiple layers of foundation and verify as well. So if we look at this example, a digital perspective, the path that can't use your identity, A combination of credentials, certificates, and data will verify who you are. And these security operators are screening, US today. They're like your security hallway. They're ensuring that only authorized users can access systems for data. And the underlying systems of trust is based on cryptography, application protocols, and compliance standards. All of these act as a nation, like the government systems that validate our passwords. So we talk about trust, we're talking about building an system where people processes technologies that harm you golden triangle.

They interact really just like you trust a passport process and a security to ensure safety while you're training. So in the same physical system to enable travel. Businesses and organizations have, we need to invest robust frameworks to secure all transact communication equation, right, in the digital world. Because without track, that system breaks down whether it's in or or online. If you can't innate where you're going and your experience and that you're going to get a plague and that patient is or, look at this a lot of unrest. And we'll talk about the threats to that, here in a coming So we chatted about, for example, the digital trust in the real but it it spans a lot that. So how do we know that you're connecting to your website and not fake one? Right?

Or how do you know the software update you just got on your iPhone really came from Apple and it wasn't so nefarious? Or how do you know the contract is signed by the person that to design it? These, you and I, like, users of everyday facilities that we don't have to worry about these things and what we interest or not. We can just focus on the outcome of what I'm trying to do. For example, we're bringing money to your grandmother instead of worrying about how if someone's trying to sniff, that packet across the wall here. All of this is a digital trust. We live in a connected world and trust is all around us. Devices are everywhere. People are constantly online.

We're doing this conference virtually, and sensitive data to move to the cloud. Even core operational technology is now architecting as connected infrastructure. So hyper connected system is just amplifying. No signs of slowing down, right, innovations, peaking. So it's a foundational structure that enabled us to have with our evidence that all the things we do online, whether interaction or transaction or business processes are trustworthy and secure. So this is a very simplified and basic way to think about how this entire ecosystem works and really how great online. So I'll story. K? Imagine it's Wednesday, and you've just received notification from your bank deposit. So you open up your app. You enter credentials. I can still renewing your balance, reading the notification, where you needed to let the app. This sequence interaction is something that we all take for granted.

It's a perfect example of visual trust in action. Right? So when you open the app, first thing you do is confirm that you are who you claim to be, whether it's a passport or a password, a phone, facial recognition, and thumbprint. The bank's stubs are verified identity. The step is trust. The app that device you're using is right? It's posture checked around that. It relies biometric or password that is stored securely on your device through the cloud. And then you and trust the link to protect your sensitive data. So as soon as you log in, they connect to the bank servers in order to be an exchange in that data. Well, how does it know it's happening? It uses domain name system, or DNS for short, to resolve domain name.

So for example, america.com, if you want, to that server's IP address, the app that makes a connection to that resolve IP address. Once the app has connected, how does it that is at the payment bank side and not a government that's trying to steal tons of information, right, or hard to get those? This is a public key infrastructure, the PKI for sure. So PKI allows the app and browser to verify the user on their side by switching digital certificate to speak to it. And that is is a secure communication channel with it. So that balance update, the transaction, whatever you're trying to do, the operation of your login, every bit of that pipeline is encrypted.

So that and if a hacker can intercept that or step on the wire, you can't read it. So now you know you're going to your destination correctly and that how that communication between you and your destination is happening in a confidential manner. It's like putting your on, that armor while you're trapped, right, between your device and the bank. DNS, UKI, electricity and water in our home. We're foundational infrastructure without which nothing works in our district. Now there's a layer to it. We'll go through this. It's also important when we talk about trust. And this is more so behind the scenes, but it's interesting software. So while you you interact with the app, the main software is currently doing its job in the background.

So it's continuously monitoring your brand new behavior, right, for flu detection. So, for example, accessing your account for an unexpected location. They're in multi they're authentic. So added layer of security, such as a code or anything like that before you're authenticated in. There's code security, which is the app itself secure, and it's got robust security testing. It just static application security testing. You're smashing dynamic. Right? Identifying abilities, then it's passing, repeating those vulnerabilities, and then that binary that you know that now that it can't be tampered with and it isn't that not known state. And that is continuously across the the CICD pipeline. So in order to happen for them, for the application to leverage this early scanning and to continuously monitor, leverage another of that same, PKI, methodology, if you will.

And this helps to comply with regulations. Right? So we compliance regulations, whether it's PCI, about how the payment card is for you. It's maturity model, cybersecurity framework, instant ISO, all anchoring same thing, which is ensure that your data is available, that the recipient is the intended recipient, and that no one has been able to infiltrate across that communication pipeline, whatever that that looks like.

But the role of trust is at every step of this interaction, and that's what process work. Right? Trust the bank to secure your money and information. The bank you or your own which recommend as a password manager on strong credentials. That is that security that you are for. And then both bank transfer the visual infrastructure and with that encryption, soft security. Trust that to do its job. Well, here's the thing. Trust isn't static. I mean, it's built over time with these strong security practices, transparent communications, and commitment to protecting users, which is a theme throughout this month is transparent when we're having a good. So the simple act is a mean to you, and that's a foundational of mutual trust. Without trust, you wouldn't using the app. Right? And be able to operate securely in world. In a world where businesses rely on digital platforms, fostering it requires security security, continuous transparency.

Just as you try to protect your money, your customers, customers and your search will do the same for business or service offering you're providing. Now there are just, of this ecosystem. Too big because it's almost time. But when we had secured that and we look at PQI, that communication, so much of that happens certificate on crypto. We the ability of crypto agility. And what that means is that I'm sure as well as we've all had that situation where the experience can push from something. Look into that with their email renewal. But that crypto agility gives us the ability to not discover all cryptographic assets and then worry then prioritize them. But but life cycle management which prepares us with multiple things including quantum. Right?

Now that you have your crypto assets in place, you have them worried, you have, like, management across the planet. If we need to pivot into different ranks, different algorithms, whatever the situation is. You have that resiliency and the ability to do that automation across that pipeline. Leading analysts are creating what's required today. Cryptograph fee according to I fundamental building block for establishing trust. And provides those certificates of medication encryption, which is the foundation element of of secure communities in your digital trust. And according to Gartner, all the certificates indeed became important, and security organizations' effective management of those digital trust becomes imperative. And the visual trust there is an unseen mechanics of policies, processes, and technologies that provide for assurance and that use in confidential communications.

Well, these provide IPQ infrastructure that establish secure identity for users machine and facilitate digital And this is that, you know, as continue to evolve and continue to innovate and, see bigger, stronger things in our technology nature, we also see an increase in security.