Companies trying to track certificates using a spreadsheet may not even be aware that a compromised certificate is in use in their system
San Jose, California (PRWEB) February 27, 2012
indeni, the leader in security infrastructure monitoring, today announced yet another high-value feature that is now built into its infrastructure monitoring solution; automatic and proactive tracking of all digital certificates across the organization’s network security infrastructure.
In the wake of high-profile security breaches at Certificate Authorities (CAs), the vast administrative challenge of tracking digital certificates across the infrastructure that are compromised or expiring has become increasingly clear. The negative impacts if they are not tracked and managed can range from serious security breaches due to compromised certification all the way to complete loss of access due to expired certificates; all of which can cause significant damage to both an organization's reputation and bottom line.
"Trust is the linchpin for everything we do in our digital world," said Eric Ouellet, a Gartner analyst and co-author of the report “X.509 Certificate Management: Avoiding Downtime and Brand Damage” [http://www.gartner.com/id=1840026 . Organizations failing to keep track of the integrity of digital certificates run the risk of losing that trust, and suffering significant damage to their reputation.
“Certificate tracking was initially built into indeni to prevent precisely the problem experienced when certificates were hacked at DigiNotar and Comodo,” says Elad Ben-Meir, VP Products and Strategy at indeni. “Companies trying to track certificates using a spreadsheet may not even be aware that a compromised certificate is in use in their system. indeni tracks everything in real-time and is constantly updated with new information so that system administrators are instantly flagged when there’s a problem.”
It is also vital to keep track of expiring certificates, which can block access to servers, websites, or other programs and cause expensive downtime. "You need to track these certificates, especially the external-facing ones, because what happens is that if you don't keep track ... they can expire without you being aware of it," Ouellet added in the report.
indeni provides pro-active monitoring for all certificates used on devices it monitors, and actively alerts users of expiring certificates and those issued by compromised CAs in time to prevent them impacting security and network stability. This is a significant step forward for administrators dealing with a variety of certificates from different issuing authorities in place in their networks. The Gartner report above notes that manually tracking large numbers of certificates (often 200 or more) is both cumbersome and puts the entire organization at risk.
“We don’t want to see what happened to one of our customers before they deployed indeni happen again,” says Yonadav Leitersdorf, indeni CEO. “They told us that they once lost access from all ATMs to the central network because they all used the same certificate and it had expired. indeni’s ability to see and monitor all certificates in use will definitely prevent that and many other potential issues.”
indeni is also keen to highlight the flexibility and expandability which is a major feature of indeni’s design, and which enables the company to incorporate extra features and functionality like certificate (and product license) monitoring so quickly, and to cater for emerging requirements such as this as soon as they develop.
“Adding these sorts of features is made possible by indeni’s unique, next-generation architecture,” says Ben-Meir. “With such deep visibility and built-in knowledge as indeni provides, the extent to which we can add and enhance features is almost limitless. The addition of proactive certification and license tracking is just one example of this unique capability.”
More information on indeni and its security operations monitoring solution can be found at http://www.indeni.com
indeni’s solutions are the first to provide true proactive monitoring for network security, giving network administrators an intuitive tool set that cuts setup times from hours to minutes and alerts IT staff to errors before they become a problem.
indeni’s next-generation monitoring covers a range of vendors and devices, from the likes of Check Point, Juniper, Fortinet and more, as well as including extra features such as device backup and device explorer, and interfacing directly with NMS solutions from vendors such as HP, IBM and CA.
Founded by software and information security experts with decades of IT experience in businesses from startups to Fortune 500 enterprises, indeni's solutions derive from years of observing IT professionals around the world struggling with similar problems. We are committed to providing highly intuitive, user-friendly solutions which represent our motto – knowledge and simplicity.