For the first time, Ponemon Institute has quantified the staggering costs of failures in cryptographic key and digital certificate management. The First Annual Cost of Failed Trust Report, underwritten by Venafi, reveals quantified findings.
Venafi is the inventor of and market leader in Enterprise Key and Certificate Management (EKCM) solutions. Venafi delivered the first enterprise-class solution to automate the provisioning, discovery, monitoring, validation and management of digital certificates and encryption keys.
If you don’t know how many MD5 certificates you have and where they are, you can’t be sure you’ve eliminated all of them. MD5 Certificate Assessor™ tallies all your certificates by type and tells you where your MD5 certificates are located (via IP addresses and port numbers).
With Venafi Assessor, you can quickly and easily identify your digital certificate population and qualify your security, operational, compliance and certificate authority compromise risks.
Director Certificate Manager enables organizations to rapidly develop an accurate certificate inventory and identify security and operational risks. It provides out-of-the-box automated management capabilities that eliminate unquantified and unmanaged risk.
Director SSH Key Manager enables organizations to quickly develop an inventory of their SSH environment and take effective action to remedy risks and challenges. It helps ensure critical system availability through key dependency mapping.
Director Symmetric Key Manager enables organizations to establish an enterprise inventory of symmetric keys, independent of the applications where they are deployed, then organize and track those keys. It can serve as the equivalent of a card catalog for all symmetric keys, tracking a broad set of information about each key.
Director performs four key processes: continuous encryption discovery, certificate and key monitoring with built-in alerts, automated Certificate Authority (CA) interactions, and application configuration. Learn about the technical specs of the Director platform, including detailed information about supported platforms and CAs.
This document provides an introduction to EKCM best practices that Venafi has developed while working for nearly a decade with Global 2000 organizations. The best practices in this document apply directly to the management of certificates and their associated private keys.
The compromise of a certificate authority (CA) can enable an attacker, or Hacker, to generate fraudulent digital certificates, which the Hacker can use in a variety of attacks against high‐value business assets. Ultimately, enterprises might need to replace some or all certificates issued by the CA and even explicitly stop trusting the CA in order to protect themselves. To avoid significant security and operational risks, enterprises must have a plan in place for responding to a CA compromise.
