Endpoints on enterprise networks – such as Windows, Mac, iOS and Android devices – need access to corporate resources to keep employees connected and productive. In order to protect the communication between enterprise networks and the increasing number of mobile endpoints, organizations must provide mobile devices of all types with secure machine identities that support authentication, encryption and decryption.
However, the machine identities for these mobile devices can become prime targets for cyber criminals if they are issued outside of enterprise policy, are not tracked or are left unrevoked after use. Bad actors can compromise machine identities from unprotected mobile devices and use them to access critical enterprise systems and data. These issues can be especially problematic with employee-owned devices.
In response to these pressing issues, Venafi created a new solution that safeguards the machine identities used on endpoints that access enterprise networks and resources.
“As businesses embrace BYOD policies, organizations have multiple teams issuing and using machine identities for mobile devices,” said Kevin Bocek, vice president of security strategy and threat intelligence at Venafi. “Venafi makes it possible for security teams to include employee-owned and corporate owned mobile endpoints in their machine identity protection strategy.”
With Venafi Enterprise Mobility Protect, organizations can protect the machine identities on mobile endpoints by managing device certificates through a central certificate security platform.
The Venafi Platform delivers comprehensive certificate visibility, issuance, distribution, and policy enforcement, as well as the control needed to terminate access for unauthorized users and employees. The enterprise-class machine identity protection solution for mobile devices also maximizes flexibility by supporting all industry-leading certificate authorities.
Key benefits of Venafi Enterprise Mobility Protect include:
Complete visibility and protection of machine identities across Windows, OS X, iOS and Android devices.
Robust, out-of-the-box integrations with leading devices and systems, including Windows and Mac OS.
Single kill switch for mobile devices and applications that allows security teams to terminate access from a single, central console.
Support for corporate-owned devices, domain-joined or not, as well as BYOD.
Automated certificate issuance from over 40+ certificate authorities including Microsoft, DigiCert, and Entrust.
“Security teams can be confident that all machine identities used for mobile devices, laptops, desktops, VPNs, WiFi and NAC authentication are secure,” concludes Bocek. “This allows all machine identities for mobile devices to be protected and comply with policy throughout their entire lifecycle, regardless of who owns the device or which team issues and manages the machine identity.”
Venafi Enterprise Mobility Protect will be available on July 2, 2018.
Want to learn more? Check out the webpage below for additional information: