Venafi Mobile Certificate Manager Protects Enterprises from Unauthorized Network Intrusion and Data Theft
Salt Lake City, UT
December 10, 2013
Enables IT Security Teams to Identify Risks and Respond Immediately with Mobile “Kill Switch”
Venafi, the leading provider of Next-Generation Trust Protection, today announced availability of Mobile Certificate Manager™. Built on the proven Venafi Director platform, the solution enables IT security teams to identify risks from the accelerating use of mobile certificates and take action to prevent unauthorized network access and data theft. Mobile Certificate Manager is the definitive “kill switch” to prevent data breaches for users, mobile devices, and mobile applications. Digital certificates are used to authenticate mobile users to a growing set of applications including the web, cloud, and 802.1X wireless networks. The solution integrates with and complements leading Mobile Device Management (MDM) systems, including market leaders MobileIron and AirWatch.
Bad actors and cybercriminals have proven time and time again that once they gain access to unprotected certificates they can authenticate into networks and gain access to corporate information. The use of certificates for users, mobile devices, and mobile applications is becoming more attractive as enterprises look to reduce the use of passwords and improve usability. Enterprises can now secure and protect the trust established by certificates issued to users, mobile devices, and mobile applications to stop cybercriminals from using stolen, forged or hijacked mobile certificates to authenticate infiltrate networks.
“Passwords remain one of the weakest links in IT security. Simple passwords are used too often, and the same password is used with too many different services. New demands for mobile usability have changed the situation and enterprises are keen to explore other options,” said Song Chuang, Research Director at Gartner. “The good news is that there are viable alternatives including user certificates. Implemented properly for suitable scenarios, certificate-based authentication can provide a high level of security, as well as a great UX,” according to Chuang.
“Enterprises have lost control of the technology that establishes trust that all IT security is built on: cryptographic keys and digital certificates. Organizations are falling further and further behind every time a new mobile device or application is added to the network,” said Jeff Hudson, CEO, Venafi. “You can remote wipe a mobile device, but that does not remove the risk of potentially rogue or compromised mobile certificates being used against the enterprise.“
Mobile Certificate Manager enables IT security teams to identify mobile and user certificates in use and establish a known good state using centralized policy that integrates with MDM systems. IT security managers can now recognize certificate anomalies, such as duplicate or orphaned certificates that might provide unauthorized access, and take immediate action to remediate by revoking certificates across one or more devices. Built on proven, patented technology, the Venafi Director platform is in use by the world’s most demanding and security conscious businesses and governments.
Mobile Certificate Manager delivers powerful features and benefits to secure and protect enterprise use of mobile certificates, including:
Secure MDM policy enforcement: Seamless integration with existing MDM solutions such as MobileIron and AirWatch allows customers to leverage them to easily enforce policies such as required key lengths and approved Certificate Authorities (CAs) for mobile devices and applications.
User certificate mapping: Customers can view all mobile user and device certificates issued to a single user and identify certificate anomalies such as duplicate, orphaned, and unneeded certificates.
Single-click revocation: Customers can immediately revoke mobile and user certificates associated with employees that have left the company or been reassigned to prevent unauthorized access to corporate information. This “kill switch” technology empowers IT security teams to respond and remediate immediately to risks.
Automatic CA Import: Automatically connect to one or more certificate authority (CA) to import certificates that are not in the Director inventory. System administrators can easily define rules for importing specific certificates, designate where they are placed in the Director hierarchy, and schedule when certificates are automatically imported.
Flexible CA Migration: After determining which CA best meets their mobile certificate requirements, customers can leverage their MDM to connect with the CA and then automate certificate issuance and revocation for all mobile devices and applications.
Centralized Policy Enforcement: Analytics intelligence enables system administrators to examine, correlate and view their organization’s certificates and keys across all users and to detect anomalous certificates.