Skip to main content
banner image
venafi logo

Why Is It “Nearly Impossible” to Manually Manage Machine Identities?

Why Is It “Nearly Impossible” to Manually Manage Machine Identities?

certificate management, Forrester Consulting, Machine Identity Management
January 10, 2019 | Katrina Dobieski

PKI professionals and my grandmother would have a lot to talk about. They both have a lot to keep track of: machine identities for one and birthdays for the other.

My grandmother has 6 children, 26 grandchildren and 12 great-grandchildren. That’s 44 birthday calls to make a year, not including in-laws. For as long as I can remember, she’s hardly missed a one.

Her solution? Not one calendar per family, or one for the grandchildren only, or one for each month. It’s a simple, integrated solution – an exhaustive audit of family dates that she vigilantly enforces on nearly every week of the year. 44 points of data go in, are organized, orchestrated and monitored. It’s a manual process. But it works for her.

The challenges presented to my grandmother are the same as those that large organizations face in defending the cryptographic keys and digital certificates that comprise their machine identities. These challenges are namely: integration, enforcement and comprehensiveness. But it is nearly impossible for PKI professionals to do this manually, especially at the speed and scale of today’s machine identities.

It all boils down to two main issues: machine identities not being tracked, and insufficient tools to manage and protect them once that are. The scope of the problem is just so much bigger than before. With the rise of IoT devices, new DevOps initiatives and cloud, companies can hardly keep up with what, or where, to manage the growing population of machine identities. According to the Forrester study, “Without the right technology solutions in place, — such as enforcing policies, routine machine identity life cycle management, and responding to machine identity security incidents at enterprise scale — this rapidly fluctuating environment can be perilous.”

Traditional certificate management doesn’t seem to be up to the rigors of managing today’s avalanche of machine identities. The study noted that “orchestrating the creation, provisioning, rotation, renewal, and replacement of machine identities tasks manually is nearly impossible, given the rapid increase in volume of machine identities and the velocity of changes affecting them.” So the only clear answer is to automate. It’s like buying my grandmother an Alexa device that would automatically send birthday calls 44 times a year. According to the study, “Moving forward, firms need fewer tools that do more …and tools that deliver the comprehensive intelligence required to drive automated protection and response.”

Nobody wants to keep track of thousands of certificates by hand. Not my grandmother. Not Gary in IT. And since when did millions of revenue and reputational dollars rest in those hands? Again, just ask the guys at any company that has suffered a breach and they’ll tell you, you can’t automate enough.

Looking for a reason to automate your machine identities? See the findings.

Related Posts

Like this blog? We think you will love this.
Featured Blog

The (Nation) State of Cyber: 64% of Businesses Suspect They’ve Been Targeted or Impacted by Nation-State Attacks

82% believe geopolitics and cybersecurity are intrinsically linked

Read More
Subscribe to our Weekly Blog Updates!

Join thousands of other security professionals

Get top blogs delivered to your inbox every week

Subscribe Now

See Popular Tags

You might also like

TLS Machine Identity Management for Dummies

TLS Machine Identity Management for Dummies

Certificate-Related Outages Continue to Plague Organizations
White Paper

CIO Study: Certificate-Related Outages Continue to Plague Organizations

About the author

Katrina Dobieski
Katrina Dobieski

Katrina writes for Venafi's blog and helps optimize Venafi's online presence to advance awareness of Machine Identity Protection.

Read Posts by Author
get-started-overlay close-overlay cross icon
get-started-overlay close-overlay cross icon

How can we help you?

Thank you!

Venafi will reach out to you within 24 hours. If you need an immediate answer please use our chat to get a live person.

In the meantime, please explore more of our solutions

Explore Solutions

learn more

Email Us a Question

learn more

Chat With Us

learn more