DigiCert, a Lehi-based global provider of digital trust products, has released its annual forecast of cybersecurity predictions for identity, technology and digital trust expected to shape the landscape in 2025 and beyond. These predictions provide a snapshot of the cybersecurity challenges and opportunities enterprises will encounter in the months ahead.

Prediction 1: Post-Quantum Cryptography Takes Off.

The year 2025 marks a pivotal time when post-quantum cryptography (PQC) shifts from theoretical frameworks to real-world deployments. With impending announcements from the U.S. National Security Agency and growing compliance pressures, PQC adoption will surge, empowering industries to embrace quantum-resistant solutions.

Prediction 2: Chief Trust Officers Take Center Stage.

Digital trust becomes a boardroom priority, leading to a continued rise of chief trust officers (CTrOs) who will oversee ethical AI and secure digital experiences and compliance in an increasingly regulated environment.

Prediction 3: Automation and Crypto-Agility Become a Necessity.

With industry shifts toward shorter SSL/TLS certificate lifespans, automation and crypto-agility will emerge as critical capabilities for organizations aiming to maintain secure operations amid evolving standards.

Prediction 4: Content Provenance Goes Mainstream.

In an era of deepfakes and digital misinformation, the Coalition for Content Provenance and Authenticity (C2PA) is set to redefine how we verify digital content. Expect to see C2PA’s Content Credential icon become commonplace on images and videos to enhance trust across media platforms.

Prediction 5: Organizations Will Demand Resilience and Zero Outages.

The CrowdStrike outage this summer underscored the need for better testing of automated updates and stronger digital trust. As IoT adoption grows, concerns about the safety of over-the-air updates, particularly for self-driving cars, are prompting calls for greater transparency in security practices. The EU’s Cyber Resilience Act, effective in 2027, will drive stricter cybersecurity standards, fostering a more secure and trustworthy IoT ecosystem.

Prediction 6: AI-Driven Phishing Attacks Will Surge.

The proliferation of AI will fuel an unprecedented surge in sophisticated phishing attacks, making them harder to detect. Attackers will leverage AI to craft highly personalized and convincing phishing campaigns, while automated tools will enable them to scale attacks at an alarming rate, targeting individuals and organizations with precision.

Prediction 7: New Private PKI Standards Like ASC X9 Will Gain Momentum.

ASC X9 is poised to gain momentum as industries like finance and health care increasingly require customized security frameworks to meet stringent regulatory demands and unique operational needs. Unlike public PKI, ASC X9 offers greater flexibility by enabling tailored policies and trust models, addressing critical areas such as data integrity and authentication. This ability to foster secure, scalable and interoperable frameworks will make ASC X9 a preferred standard for organizations prioritizing trust and collaboration.

Prediction 8: Cryptography Bill of Materials (CBOM) Gains Traction.

In response to escalating cybersecurity threats, CBOMs will become a vital tool for ensuring digital trust by cataloging cryptographic assets and dependencies, enabling better risk assessments.

Prediction 9: The Era of Manual Certificate Management Ends.

Manual management of certificates, still common in nearly a quarter of enterprises, will phase out as automation becomes indispensable for handling shorter certificate lifespans and stricter security protocols.

Prediction 10: Organizations Will Continue to Prioritize Fewer Vendors.

Despite concerns about single-vendor risks and a peak of venture capital funding for AI startups, enterprises will continue to consolidate vendors to simplify management, improve integration, and enhance overall security practices.

“The relentless pace of innovation is not just reshaping our digital lives — it’s exposing new vulnerabilities faster than we can secure them, demanding a bold rethinking of how we approach cybersecurity,” said Jason Sabin, chief technology officer at DigiCert. “The predictions for 2025 underscore the urgent need to stay ahead of these vulnerabilities by driving quantum readiness, enhancing transparency and reinforcing trust as the bedrock of our rapidly changing digital ecosystem.”

The full DigiCert predictions report can be seen on the company’s blog, accessible through its website at www.gigicert.com.