Venafi and Gemalto Partner to Expand Machine Identity Protection
July 19, 2018
New partnership and integration allows customers to protect the growing number of connected machines
SALT LAKE CITY – July 19, 2018 – Venafi®, the leading provider of machine identity protection, and Gemalto(Euronext NL0000400653 GTO), the world leader in digital security, today announced a new technology partnership and integration that allows organizations to automate encryption key life cycles and certificate issuance to better protect machine identities. With Venafi and Gemalto’s integration, organizations reduce the risk of data breaches, meet compliance requirements and simplify machine identity protection.
Scaling the use of HTTPS demands trade-offs between security and efficiency. For example, enabling Encryption Everywhere strategies requires organization to deploy more Secure Sockets Layer/Transport Layer Security (SSL/TLS) keys and certificates. The integrated solution of the Venafi Trust Protection Platform and Gemalto’s SafeNet Luna Hardware Security Modules strengthens machine identity protection programs by eliminating time-consuming and error-prone manual tasks, which increase the risk of exposing private keys and threaten application availability.
“Enterprises face new and complex threats that grow in intensity each day,” said Todd Moore, senior vice president of encryption products at Gemalto. “Our partnership with Venafi allows organizations to scale their use of hardware security modules (HSMs) to reduce risk and improve compliance and threat protection, ensuring that encryption keys and certificates always remain highly protected in hardware. This integration demonstrates Gemalto’s long-standing commitment to delivering the world’s leading HSM technology and optimum protection to our customers. This is especially important with the expansion of connected devices.”
Key benefits of Venafi and Gemalto’s integration include:
Reduced risk and strengthened security: Security and operations teams can expand the use of encryption with keys and certificates generated and stored in a FIPS 140-2 Level 3 certified HSM at the application level. This dramatically reduces the risk of compromise and improves overall security.
Centralize control, visibility and validation: Security and risk management teams now have one central location for setting, enforcing and validating policy for HSM security. As a result, they can better meet compliance requirements and simplify audits.
Reduce complexity and simplify security operations: Key pairs are securely generated in the HSM where they can be accessed by applications, and the private keys never leave the hardened, tamper-resistant HSM appliance. All operations are automated; administrators are not required to perform manual tasks on physical or virtual servers.
Reduce costs and meet service-level agreements: Security operations teams no longer need to spend time performing key and certificate operations for applications. By saving businesses time, they keep resources and budgets in check.
“Organizations can use this solution to automate the management and replacement of keys protected by SafeNet Luna HSMs in Microsoft IIS, Apache and Java application servers,”said Kevin Bocek, chief security strategist for Venafi.“Our integration with Gemalto works immediately with all leading certificate authorities in the Venafi Technology Network, ensuring improved machine identity protection. It is easy to deploy, reduces errors and dramatically cuts the time and resources required to use SSLand TLS keys and certificates with HSMs.”