Skip to main content
banner image
venafi logo

Bring Automation to your HSM Key Orchestration

Bring Automation to your HSM Key Orchestration

Machine Identity Protection, HSM, integration, nCipher Security
February 19, 2019 | Eva Hanscom

Venafi and nCipher Security, are working together on a new technology partnership and integration that combines Venafi Advanced Key Protect with nCipher nShield hardware security modules (HSMs). The combined solution can be used to scale the generation and protection of machine identities – even in complex, high‐security environments.

HSMs provide you with a trusted, proven and auditable way to secure the cryptographic keys that function as machine identities. However, many organizations create custom scripts and use other manual processes to generate keys, leaving the keys much more vulnerable to attack and introducing new security risks.

The integration of Venafi Advanced Key Protect and nCipher nShield HSMs, allows you to ensure the strongest cryptographic keys are always used across the enterprise. Featuring the same automation available in the Venafi Platform, TLS and SSL keys are generated centrally and securely within nShield HSMs. For even greater security, TLS keys remain on the nShield HSM throughout their entire life cycle – from key generation and certificate issuance to rekey and renewal processes.

“As our customers make the transition to increasingly digital environments, they need to trust the machines that are used across their networks to support critical business functions such as securing web transactions, privileged access and authenticating software code,” said Peter Galvin, chief strategy officer at nCipher Security. “If the identities of these machines are not authenticated and protected, then they are open to misuse by cybercriminals. Through a consistent use of strong cryptographic keys, Venafi and nCipher make it possible for customers to own and control the keys and certificates used to authenticate machine identities and establish trust in these digital transactions.”

Key benefits of Venafi and nCipher’s integration include:

  • Improves policy and workflow controls that enable fast, automated orchestration of keys.
  • Significantly reduces the risk of keys being stolen from file systems, software certificate stores and system memory – including the risk from side-channel attacks such as Spectre and Meltdown.
  • Manages certificates and keys in a FIPS 140‐2 Level 2 and Common Criteria EAL4+ hardened, high-assurance environment.
  • Increases the number of strong keys generated from a NIST‐certified random bit generator (RBG).
  • Orchestrates the use of HSMs under strict policy control across the enterprise.

“Our integration with nCipher nShield HSMs is easy to deploy, reduces errors and dramatically cuts the time and resources required to use SSL and TLS keys and certificates with HSMs,” said Kevin Bocek, chief cybersecurity strategist for Venafi. “Through our partnership with nCipher, we are providing you the ability to automate machine identity life cycles with the highest level of protection possible. This includes protection for the most popular web services in enterprises today such as Microsoft IIS, Apache and Java application servers. Our integrated solution also works immediately with all of the leading certificate authorities in the Venafi Technology Network.”

Want to learn more? Please visit: https://marketplace.venafi.com/apps/217851/ncipher-security-nshield-connect#!overview

Related posts

Like this blog? We think you will love this.
Intelligent robot looking into the future
Featured Blog

Blockchain May Be Leading Us Toward More Secure Human Authentication. But What About Machines?

Read More
Subscribe to our Weekly Blog Updates!

Join thousands of other security professionals

Get top blogs delivered to your inbox every week

See Popular Tags

You might also like

CIO Study: Certificate-Related Outages Continue to Plague Organizations
White Paper

CIO Study: Certificate-Related Outages Continue to Plague Organizations

Forrester Consulting Whitepaper: Securing the Enterprise with Machine Identity Protection
Industry Research

Forrester Consulting Whitepaper: Securing the Enterprise with Machine Identity Protection

Machine Identity Protection for Dummies
eBook

Machine Identity Protection for Dummies

About the author

Eva Hanscom
Eva Hanscom

Eva is Public Relations Manager at Venafi. She is passionate about educating the global marketplace about infosec and machine-identity issues, and in 2018 grew Venafi's global coverage by 45%.

Read Posts by Author
get-started-overlay close-overlay cross icon
get-started-overlay close-overlay cross icon
Venafi Risk assessment Form Image

Sign up for Venafi Cloud


Venafi Cloud manages and protects certificates



* Please fill in this field Please enter valid email address
* Please fill in this field Password must be
At least 8 characters long
At least one digit
At last one lowercase letter
At least one uppercase letter
At least one special character
(@%+^!#$?:,(){}[]~`-_)
* Please fill in this field
* Please fill in this field
* Please fill in this field
*

End User License Agreement needs to be viewed and accepted



Already have an account? Login Here

×
get-started-overlay close-overlay cross icon

How can we help you?

Thank you!

Venafi will reach out to you within 24 hours. If you need an immediate answer please use our chat to get a live person.

In the meantime, please explore more of our solutions

Explore Solutions

learn more

Email Us a Question

learn more

Chat With Us

learn more
Chat