Skip to main content
banner image
venafi logo

Speeding Access to Secure DevOps Certificates with GlobalSign

Speeding Access to Secure DevOps Certificates with GlobalSign

DevOps, GlobalSign, TLS/SSL
May 16, 2019 | Eva Hanscom

Cryptographic keys and digital certificates serve as machine identities. They are the foundation of security for all applications on enterprise networks, the internet and cloud environments. As the number of machines in organizations increases—especially as they embrace DevOps—the number of machine identities on enterprise networks is exploding.

When it comes to machine identities, however, there is often a disconnect between developers and security teams. Developers may feel frustrated by traditional methods of certificate acquisition, which are often tedious and lengthy. But, if they turn to ad hoc processes, security teams don’t know what developers are doing with certificates or if those machine identities are properly protected. When left unchecked, DevOps teams can create risk through vulnerabilities and errors that enter production environments, increasing an organization’s overall attack surface.

A new integration of Venafi Cloud and GlobalSign PKI for DevOps provides DevOps teams with quick, high-speed access to trusted machine identities across multiple clouds, hybrid infrastructure, and containerized environments. Security teams can rest assured that DevOps teams are using standardized, automated SSL/TLS certificates that fit enterprise policy and eliminate errors.
 

By using GlobalSign's cloud-based PKI services, developers and information security teams eliminate the need to build and manage their own CAs and supporting services, including Online Certificate Status Protocol (OCSP) and Certificate Revocation Lists (CRL).
 

Venafi Cloud offers developers out-of-the-box integrations with DevOps frameworks, including HashiCorp Terraform, HashiCorp Vault, SaltStack, Ansible, Docker and Jetstack cert-manager. The Venafi Cloud and GlobalSign’s PKI for DevOps solution also features well-documented standard interfaces that can be used across teams, including a REST API, an open source VCert SDK (available in Go and Python) and ACME. Enterprises of all sizes can now have one service for machine identities across their hybrid infrastructure and multiple clouds, helping to increase the speed of DevOps. “Now with support for GlobalSign’s highest performing and scalable PKI service, Venafi Cloud eliminates the machine identity risks that have plagued DevOps, hybrid and multi-cloud environments,” said Kevin Bocek, vice president of security strategy and threat intelligence for Venafi.
 

Key benefits of the Venafi Cloud and GlobalSign integration include:
  • Supports DevOps use cases that require ultra-high-speed certificate issuance; allows certificates to be delivered in seconds.
     
  • Embeds certificate issuance into the tools developers are already using, including configuration management, container orchestration, release automation and secrets management tools.
     
  • Incorporates policy-enforced certificate issuance directly into CI/CD pipelines and enforces the appropriate policies for each environment.
     
  • Prevents outages by automating the certificate lifecycle, eliminating errors and enforcing security policy within DevOps workflows. Out-of-the-box integrations, multiple APIs and SDKs can be used everywhere, including the Automated Certificate Management Environment (ACME) protocol.
     
  • Improves security posture by securing infrastructure as it is spun up, enabling end-to-end HTTPS with consistent, can-be-used everywhere integrations, interfaces, APIs and SDKs.
     
  • Eliminates the need to manage PKI in-house or rely on self-signed certificates.
     
  • Complies with The Payment Card Industry Data Security Standard (PCI DSS), National Institute of Standards and Technology (NIST), Health Insurance Portability and Accountability Act (HIPAA) and other audit frameworks.
     

“Now, DevOps teams get the fastest, easiest way to automate TLS certificates whether they’re using ready-to-use integrations or powerful APIs,” concluded Bocek. “And security teams are happy knowing trusted certificates are being used correctly because they have complete visibility. We are thrilled that our partnership with GlobalSign will provide DevOps organizations with more dynamic, flexible machine identity protection solutions.”

Learn more about DevOps solutions for SSL/TLS certificates. Explore now.

 

Related posts

 

Subscribe to our Weekly Blog Updates!

Join thousands of other security professionals

Get top blogs delivered to your inbox every week

See Popular Tags

You might also like

lawyer reading from legal books on a desk, with a scale in the foreground

Do We Trust Governments to Effectively Regulate Privacy? [Ask Security Professionals]

hands reaching out of laptop screen holding ballot box, another person's hand casting a vote
Encryption

Will Encryption Backdoors Hurt Election Infrastructure? Security Professionals Say Yes.

Man standing in front of a cyber-secured world.

What If You Could Guarantee Eliminating Outages in Your Organization?

About the author

Eva Hanscom
Eva Hanscom

Eva is Public Relations Manager at Venafi. She is passionate about educating the global marketplace about infosec and machine-identity issues, and in 2018 grew Venafi's global coverage by 45%.

Read Posts by Author
get-started-overlay close-overlay cross icon
get-started-overlay close-overlay cross icon
Venafi Risk assessment Form Image

Sign up for Venafi Cloud


Venafi Cloud manages and protects certificates



* Please fill in this field Please enter valid email address
* Please fill in this field Password must be
At least 8 characters long
At least one digit
At last one lowercase letter
At least one uppercase letter
At least one special character
(@%+^!#$?:,(){}[]~`-_)
* Please fill in this field
* Please fill in this field
* Please fill in this field
*

End User License Agreement needs to be viewed and accepted



Already have an account? Login Here

×
get-started-overlay close-overlay cross icon

How can we help you?

Thank you!

Venafi will reach out to you within 24 hours. If you need an immediate answer please use our chat to get a live person.

In the meantime, please explore more of our solutions

Explore Solutions

learn more

Email Us a Question

learn more

Chat With Us

learn more
Chat