- 20 February 2019 12:21
Venafi and nCipher Security Partner to Expand Machine Identity Protection
SALT LAKE CITY – February 19, 2019 – Venafi®, the leading provider of machine identity protection, and nCipher Security, the provider of trust, integrity and control for critical business information and applications, today announced a new technology partnership and integration. The integrated solution combines Venafi Advanced Key Protect with nCipher nShield hardware security modules (HSMs) and can be used to scale the generation and protection of machine identities – even in complex, high-security environments.
Cryptographic keys serve as machine identities and are the foundation of enterprise information technology systems. HSMs provide organisations with a trusted, proven and auditable way to secure these machine identities. However, many organisations create custom scripts and use other manual processes to generate keys, leaving them much more vulnerable to attack and introducing new risks to the global enterprise.
With the integration of Venafi Advanced Key Protect and nCipher nShield HSMs, organisations ensure the strongest cryptographic keys are always used across the enterprise. Featuring the same automation available in the Venafi Platform, TLS and SSL keys are generated centrally and securely within nShield HSMs. For even greater security, TLS keys remain on the nShield HSM throughout their entire life cycle – from key generation and certificate issuance to rekey and renewal processes.
“Our integration with nCipher nShield HSMs is easy to deploy, reduces errors and dramatically cuts the time and resources required to use SSL and TLS keys and certificates with HSMs,” said Kevin Bocek, chief cybersecurity strategist for Venafi. “Through our partnership with nCipher, we are providing organisations the ability to automate machine identity life cycles with the highest level of protection possible. This includes protection for the most popular web services in enterprises today such as Microsoft IIS, Apache and Java application servers. Our integrated solution also works immediately with all of the leading certificate authorities in the Venafi Technology Network.”
Key benefits of Venafi and nCipher’s integration include:
- Improves policy and workflow controls that enable fast, automated orchestration of keys.
- Significantly reduces the risk of keys being stolen from file systems, software certificate stores and system memory – including the risk from side-channel attacks such as Spectre and Meltdown.
- Manages certificates and keys in a FIPS 140-2 Level 2 and Common Criteria EAL4+ hardened, high-assurance environment.
- Increases the number of strong keys generated from a NIST-certified random bit generator (RBG).
- Orchestrates the use of HSMs under strict policy control across the enterprise.
“As our customers make the transition to increasingly digital environments, they need to trust the machines that are used across their networks to support critical business functions such as securing web transactions, privileged access and authenticating software code,” said Peter Galvin, chief strategy officer at nCipher Security. “If the identities of these machines are not authenticated and protected, then they are open to misuse by cybercriminals. Through a consistent use of strong cryptographic keys, Venafi and nCipher make it possible for customers to own and control the keys and certificates used to authenticate machine identities and establish trust in these digital transactions.”
To learn more about the integration please visit the nCipher page: https://marketplace.venafi.com/apps/217851/ncipher-security-nshield-connect#!overview on the Venafi technology marketplace.
Solution Brief: nCipher Security nShield Connect: https://marketplace.venafi.com/apps/217851/ncipher-security-nshield-connect#!resources
Venafi Technology Network: https://www.venafi.com/technology-partnership
Venafi Trust Protection Platform: https://www.venafi.com/platform/trust-protection-platform
Venafi is the cybersecurity market leader in machine identity protection, securing machine-to-machine connections and communications. Venafi protects machine identity types by orchestrating cryptographic keys and digital certificates for SSL/TLS, IoT, mobile and SSH. Venafi provides global visibility of machine identities and the risks associated with them for the extended enterprise – on premises, mobile, virtual, cloud and IoT – at machine speed and scale. Venafi puts this intelligence into action with automated remediation that reduces the security and availability risks connected with weak or compromised machine identities while safeguarding the flow of information to trusted machines and preventing communication with machines that are not trusted.
With 31 patents currently in its portfolio, Venafi delivers innovative solutions for the world's most demanding, security-conscious Global 5000 organisations, including the top five U.S. health insurers; the top five U.S. airlines; four of the top five U.S., U.K., Australian and South African banks; and four of the top five U.S. retailers. Venafi is backed by top-tier investors, including TCV, Foundation Capital, Intel Capital, QuestMark Partners, Mercato Partners and NextEquity.
For more information visit: www.venafi.com
About nCipher Security
Today’s fast moving digital environment enhances customer satisfaction, gives competitive advantage and improves operational efficiency. It also multiplies the security risks. nCipher Security, a leader in the general purpose hardware security module (HSM) market, empowers world-leading organisations by delivering trust, integrity and control to their business critical information and applications.
Our cryptographic solutions secure emerging technologies – cloud, IoT, blockchain, digital payments – and help meet new compliance mandates, using the same proven technology that global organisations depend on today to protect against threats to their sensitive data, network communications and enterprise infrastructure. We deliver trust for your business critical applications, ensuring the integrity of your data and putting you in complete control – today, tomorrow, at all times. www.ncipher.com
nCipher Security will be exhibiting at RSA Conference 2019 on booth #3106, drop by to learn how our cryptographic solutions guard against today’s threats and attacks, enable compliance and protect your business applications.
Follow us on LinkedIn (https://www.linkedin.com/company/nciphersecurity/), Twitter (https://twitter.com/nCipherSecurity), Facebook (https://www.facebook.com/nCipherSec) and Instagram (https://www.instagram.com/nciphersecurity) – search nCipher Security.