Businesses rely heavily upon SSL/TLS certificates to encrypt data and authenticate systems and applications both inside and outside the corporate network. The use of keys and certificates will continue to grow as businesses need to ensure appropriate access across servers and applications.
In fact, the Ponemon Institute’s 2015 Cost of Failed Trust Report revealed that between 2013 and 2015, the number of keys and certificates deployed on network appliances, web servers and cloud servers grew over 34 percent to an average of almost 24,000 per enterprise. And those numbers have continued to grow steadily over time. This type of sustained growth makes it difficult for organizations to secure their enterprise IT environments and to keep up with rising key and certificate deployments in the data center.
To ensure successful management of keys and certificates, organizations must gain visibility into every SSL/TLS key and certificate present including those on network infrastructure solutions such as Application Delivery Controllers (ADCs). When strategically deployed throughout the data center, ADCs enable applications to be highly available, accelerated and secure. However, most ADCs need to be manually configured to discover thousands of certificates in the network. System administrators need to generate keys and request certificates as well as oversee installation and configuration. And with so many other network devices like NGFWs, IDS/IPS systems and servers requiring access to keys and certificates, this process is not only burdensome. It’s also error-prone in that it can cause certificates to expire, thereby leading to network outages. Manual processes and the lack of a centralized key and certificate management system can limit operational efficiency and also leave gaps in security.
A10 Networks and Venafi partnered together to create a joint solution with the A10 Thunder ADC line and Venafi Trust Protection Platform that helps organizations automate the management and security of the entire certificate lifecycle process. Venafi and A10 Networks’ joint solution can help organizations do the following:
This blog was originally posted by Patriz Regalado on May 27, 2015.