Digital certificate breaches have fueled an erosion of trust online, according to the SearchSecurity editorial team. While researchers look for alternatives to the digital certificate system, it may not always be clear that the site you’re visiting is legitimate.

In this wide ranging discussion, SearchSecurity editors and special guest Andrew Jaquith of Perimeter E-Security, explore whether 2011 was a good year for the security industry or if the latest security incidents highlight many of the industry’s faults.

In addition to the digital certificate breaches, part two of this podcast explores the trend of companies increasingly studying the threat landscape to be better prepared for real world attacks. While many organizations fail at completing the most basic security tasks, others have applied the basics and are taking the next steps in understanding who their adversaries are and how to defend against them.

In addition, McAfee’s Operation ShadyRAT report may have come under intense criticism, but vendor research serves an important purpose, according to Jaquith. When taken into context, some research reports can be helpful when strategic planning.

Part 1 of Security Wins and Fails of 2011