Venafi Assessor™

Quickly and easily identify your digital certificate population then determine the associated risks with certainty –for free

Venafi Assessor™

Analyst Coverage

"Admittedly this is a complex topic, but the most important takeaway is this: the risk-based evaluation your company needs to make right now is not about your vulnerability to the Flame virus; it is about your vulnerability to MD5-signed certificates. If you are confident in knowing how many of these there are, and where they are, and what systems are potentially at risk as a result – well done." Full Report

"Organizations with roughly 200 or more documented X.509 certificates in use are high-risk candidates for unplanned expiry and having certificates that have been purchased but not deployed." Full Report

"To support the broader deployment of encryption, organizations with top performance have looked towards increased automation and centralized, heterogeneous approaches to key lifecycle management. Venafi is well-aligned with this Best-in-Class approach."

"Venafi's primary differentiator is its broad entity support for systems that utilize asymmetric keys and certificates. In addition, it implements flexible key lifecycle policies and administration functionality and automated discovery of keys and certificates in systems that support such activity."

"Venafi offers compelling advantages, such as being the early mover in this market, with proven deployments at marquee customers demonstrating its ability to scale and provide breadth of integration."

"When there are many hundreds of certificates from a variety of certificate authorities, the only ecumenical [universal], nonproprietary provider of a certificate management solution is Venafi. Other CA management systems are biased toward the particular CA by, for example, only supporting renewals from that specific CA." Full Report

"The emphasis on orchestration, in tandem with its scalability and interoperability, is tied to the evolution of Venafi's competitive landscape, and to the potential to frame its value in the context of risk management."

Overview

Organizations protect critical and often regulated information with hundreds or thousands of encryption keys and digital certificates, yet 70 percent of companies have inaccurate or incomplete data about their growing certificate and key populations. A recent Venafi study found that organizations performing basic inventory assessments often discover three to five times more Secure Socket Layer (SSL) certificates than they expected to find on their network. As a result, these organizations are vulnerable to costly unplanned outages, security compromises and failed audits.

Venafi Assessor™ is a downloadable, easy-to-install and cost-free software solution that scans an organization’s network to locate deployed digital certificates and associated encryption keys. Assessor leverages industry best practices to highlight the security, operational and compliance risks of poorly managed security instruments, and then provides a series of reports and industry best practice remediation recommendations.

Enterprises can know with certainty the extent of their risks, turning assumptions about their certificates and keys into hard data—at no cost. With Assessor, you will:

  • See which keys are strong and which are weak and out of compliance
  • Determine which certificate validity periods are creating risk
  • Discover the identity of each certificate’s issuing CA
  • Find out which certificates are set to expire

Get Assessor Today

Measurable Successful Results

Best Practices

Function

Problems