Cyber-Ark Sees Industry Spike for Application Identity Management Security Solutions.Cyber-Ark's Enterprise Password Vault[TM] Provides the First App2App Solution to Meet Large Enterprise Requirements NEWTON, Mass. -- Recent breaches around the world, amounting to billions of dollars, has shaken the world's business community into closely scrutinizing their "back-office" security controls. Companies such as Cyber-Ark Software are seeing an unprecedented demand from corporations globally looking for Looking for In the context of general equities, this describing a buy interest in which a dealer is asked to offer stock, often involving a capital commitment. Antithesis of in touch with. solutions that will securely manage their privileged identities. Cyber-Ark Software, the leader in Privileged Identity Management, recently released a breakthrough approach to securing application-to-application credentials - which has been timely in light of predictions that both Jerome Kerviel at Societe Generale and the anonymous informant who gave out customers' details at the Liechtenstein Bank, part of the LGT LGT Light LGT Lateral Gene Transfer LGT Lifeguard Training LGT Locomotiv GT (Hungarian rock band) LGT Lattice Gauge Theory (physics) LGT Liechtenstein Global Trust (bank) Group to both the German and UK Tax Authorities, were able to do so due to the lack of security controls over privileged users. Enterprise Password Vault (EPV EPV Energy Photovoltaics, Inc (Robbinsville, NJ) EPV Entry Point Vector EPV Equivalent Potential Vorticity EPV Ecrivain Public Virtuel (French) EPV Earnings Power Value EPV Endpoint Vector ) 4.5 addresses the full range of security and audit challenges surrounding application identities within applications, scripts and application servers. "The investigations are not complete, but both of these recent occurrences within European financial institutions most probably came down to the lack of IT security controls and processes to protect and manage privileged access to systems and applications," said Udi Mokady, president and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of Cyber-Ark. "Organizations have got to learn to take greater care of their sensitive information to make sure it is not accessible to staff without proper controls. Securing sensitive data and managing access to privileged accounts is crucial if more institutions are not going to hemorrhage vital information, costing them greatly financially as well as leaving their reputation somewhat tainted taint v. taint·ed, taint·ing, taints v.tr. 1. To affect with or as if with a disease. 2. To affect with decay or putrefaction; spoil. See Synonyms at contaminate. 3. ." Research by CERT and law enforcement agencies A law enforcement agency (LEA) is a term used to describe any agency which enforces the law. This may be a local or state police, federal agencies such as the Federal Bureau of Investigation (FBI) or the Drug Enforcement Administration (DEA). shows that 86 percent of those who've committed cyber-crimes held technical positions and an overwhelming 90 percent had system administrator or privileged system access. Managing credentials for application authentication (1) Verifying the integrity of a transmitted message. See message integrity, e-mail authentication and MAC. (2) Verifying the identity of a user logging into a network. poses security, auditing and administration challenges, and the lack of management of these powerful identities has been the "elephant in the room Not to be confused with White elephant. The elephant in the room (also elephant in the living room, elephant in the corner, elephant on the dinner table, elephant in the kitchen, horse in the corner, 400lb gorilla in the room, etc. " in the IT infrastructure. Medium to large enterprises usually have thousands of servers, each running many applications, thousands of processes, and scripts that constantly use the credentials in order to communicate with databases and other systems. Despite this fact, while more than 90 percent of enterprises regularly change passwords for employees, up to 42 percent never change hard-coded and embedded passwords for application IDs, testing scripts and batch jobs. This is in direct conflict with their own internal security policies, and is increasingly being highlighted by both internal and external audits covering a range of governmental and industry specific regulations such as SOX, PCI (1) (Payment Card Industry) See PCI DSS. (2) (Peripheral Component Interconnect) The most widely used I/O bus (peripheral bus). , Basel II Basel II is the second of the Basel Accords, which are recommendations on banking laws and regulations issued by the Basel Committee on Banking Supervision. The purpose of Basel II is to create an international standard that banking regulators can use when creating regulations and NERC/FERC. "While all of the platforms accessed via a privileged password are critical and vulnerable, a particularly complex situation arises with embedded application An application that permanently resides in an industrial or consumer device. Providing some type of control function and/or user interface, the software is typically stored in a non-volatile memory such as ROM or flash memory. passwords," said Sally Hudson, research director for IDC's Security Services Security services are state institutions for the provision of intelligence, primarily of a strategic nature, but also including protective security intelligence. Examples include the Security Service (MI5) and the Secret Intelligence Service (MI6) in the United Kingdom, and the and Identity Management Products program. "The danger of these application-embedded passwords being misappropriated mis·ap·pro·pri·ate tr.v. mis·ap·pro·pri·at·ed, mis·ap·pro·pri·at·ing, mis·ap·pro·pri·ates 1. a. To appropriate wrongly: misappropriating the theories of social science. or mishandled is growing accordingly, and organizations should take measures to make Application Identity Management a strong component of their overall IAM IAM - Interactive Algebraic Manipulation. Interactive symbolic mathematics for PDP-10. ["IAM, A System for Interactive Algebraic Manipulation", C. Christensen et al, Proc Second Symp Symb Alg Manip, ACM Mar 1971]. system implementation." "What we're seeing and hearing from customers, partners and prospects is that securing privileged accounts--and application passwords in particular--is their number one area of concern right now. Cyber-Ark has never seen a greater interest from global companies seeking us out for a technology solution that can securely manage, store and audit their application identities," added Mokady. What's New in EPV 4.5 for Applications? The latest release of Cyber-Ark's Enterprise Password Vault (EPV), version 4.5, provides the only solution to fully address the challenges of Inter-application authentication. EPV eliminates the need to store App2App passwords in applications, scripts or configuration files, and allows these highly-sensitive credentials to be centrally stored, logged and managed with Cyber-Ark's patented Vaulting Technology[R]. Using EPV, organizations may comply with internal and regulatory requirements for regularly replacing passwords and securely monitoring privileged access across all systems, databases and applications. EPV 4.5 enhancements for Application Identity Management (AIM) include: Application and Scripts Credential Management * Secure Cache for Performance and Availability EPV 4.5 introduces an advanced local password cache which greatly improves the solutions performance, scalability and availability to thousands of calling applications and scripts. * New Application identity Management infrastructure Version 4.5 introduces the next generation of the Application Identity Infrastructure. With options for error detection, timeout periods and other finely tuned options, applications can now optimize secure, efficient and auditable password management. Application Server Credential Management * No Code Changes Required Cyber-Ark's EPV 4.5 introduces a patent-pending approach to eliminating hard-coded credentials in Application Servers' data sources. The unique advantage of this solution is that no code changes are required in applications that use the application server's data sources. With out of the box support for IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) WebSphere and BEA Weblogic A software suite from BEA Systems, Inc., San Jose, CA (www.beasys.com) that is used to deploy Web and SOA applications. The core product is BEA WebLogic Server, a J2EE application server. , EPV 4.5 ensures that critical passwords required for applications running on Application Servers are always available but are never exposed or vulnerable. * Eliminating Downtime During Password Change Process EPV 4.5 introduces a novel approach to password replacement for pooled credentials that does not require the Application Server to be restarted in order to synchronize its connection pools. With many customers using mission-critical production Application Servers, the ability to avoid restarting them as part of a password replacement process provides huge benefits in reduced administrative overhead, operational risk mitigation and no downtime. For more information about EPV 4.5, please visit www.cyber-ark.com or contact Kim Baker of PAN Communications at +1-978-474-1900 today. About Cyber-Ark Cyber-Ark[R] Software is the leading provider of Privileged Identity Management (PIM (1) (Protocol Independent Multicast) A multicast routing protocol endorsed by the IETF. Used in conjunction with an existing unicast routing protocol, it comes in two flavors: Dense Mode (PIM-DM) is used when recipients in the target group are in a concentrated ) solutions for securing privileged user accounts and highly-sensitive information across the enterprise. Long recognized as an industry innovator for its patented Vaulting Technology[R], Cyber-Ark's digital vault products include: The Enterprise Password Vault[TM] for the secure management of administrative, application and privileged user passwords; the Inter-Business Vault[R], a secure infrastructure for cross-enterprise data exchange of highly-sensitive information, and the Sensitive Document Vault[TM] for secure storage and management of highly-sensitive documents. Cyber-Ark's Vaulting platform has been tested by ICSA See TruSecure. Labs, an independent division of Cybertrust and the security industry's central authority for research, intelligence, and certification testing of security products. Cyber-Ark's award-winning technology is deployed by more than 400 global customers, including 100 of the world's largest banks and financial institutions. Headquartered in Newton, MA, Cyber-Ark has offices and authorized partners in North America North America, third largest continent (1990 est. pop. 365,000,000), c.9,400,000 sq mi (24,346,000 sq km), the northern of the two continents of the Western Hemisphere. , Europe and Asia Pacific. For more information, visit www.cyber-ark.com |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion