Printer Friendly
The Free Library
19,604,530 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

Cyber-Ark Software Safeguards Application-to-Application Passwords; Information Security Provider's Latest Enhancement of Password Vault Secures and Manages Application-to-Application Passwords, Helps to Ensure Compliance.


DEDHAM, Mass. -- Cyber-Ark(R) Software Inc., the information security software that develops and markets digital vaults for securing and managing highly-sensitive information within and across global enterprise networks, today announced the release of its support for application to application passwords. The Enterprise Password Vault solution for securing, sharing and managing administrative passwords has now been enhanced to support the management of application to application passwords, otherwise known as service account passwords.

Password Vault provides a "safe haven 1. Designated area(s) to which noncombatants of the United States Government's responsibility and commercial vehicles and materiel may be evacuated during a domestic or other valid emergency.
2. " where all privileged users' passwords can be securely archived, transferred, shared and managed by authorized users authorized user Radiation physics A person who, having satisfied the applicable training and experience requirements, is granted authority to order radioactive material and accepts responsibility for its safe receipt, storage, use, transfer and disposal , such as IT staff and administrators. It creates a centralized cen·tral·ize  
v. cen·tral·ized, cen·tral·iz·ing, cen·tral·iz·es

v.tr.
1. To draw into or toward a center; consolidate.

2.  credential management infrastructure to secure administrative and service account passwords. The Central Password Manager A password manager is software that helps a user organize passwords and PIN codes. The software typically has a local database or files that holds the encrypted password data.  module enables organizations to change passwords automatically on remote machines and store the new passwords in the Vault "In the Vault" is a short story by American horror fiction writer H.P. Lovecraft, written on September 18, 1925 and first published in the November 1925 issue of the amateur press journal Tryout. , without human intervention and in accordance with organizational policies. The added capability to manage service accounts allows the software to remove hard-coded passwords from all scripts and code, encrypt stored passwords and control all access to credentials by application or support staff. These enhanced Administrative ID management capabilities further enable corporations to comply with the latest regulatory requirements.

"Service account passwords are an often overlooked security concern," said Udi Mokady, Cyber-Ark President and COO. "If a high-level password falls into the wrong hands, it can have devastating dev·as·tate  
tr.v. dev·as·tat·ed, dev·as·tat·ing, dev·as·tates
1. To lay waste; destroy.

2. To overwhelm; confound; stun: was devastated by the rude remark.  results on a company's reputation and financial standing. Moreover, managing these passwords has become a logistical nightmare for IT departments. The Password Vault provides the most effective way to manage and protect sensitive passwords. This latest version speaks to the needs of IT departments for considerable ease of use and flexibility."

The challenge of securing, managing and sharing service accounts within the enterprise is a major issue for IT departments and application managers. The service account passwords that enable applications to communicate with each other must also be managed as they present one of the most vulnerable backdoors for any enterprise organization.

Service account passwords are often hard coded within applications, so resetting them becomes a complex process involving changes to application code, compilation and in some cases a long process of transferring the code from development to QA to production. To alleviate these headaches and the associated downtime, passwords often remain unchanged. Even worse, administrators have had no mechanism to disable To turn off; deactivate. See disabled.  passwords once they're given out. This means former employees, MSP (1) (Management Service Provider or Managed Service Provider) An organization that manages a customer's computer systems and networks which are either located on the customer's premises or at a third-party datacenter.  staff, offshore developers and others may have access to the company's most valuable assets.

Cyber-Ark's Vaulting vaulting

Gymnastics exercise in which the athlete leaps over a form that was originally intended to mimic a horse. At one time, the pommel horse was used in the vaulting exercise, with the pommels (handles) removed.  Technology provides an effective way to safeguard these passwords. This software encompasses a very secure repository for passwords and password objects, as well as a central password manager. The password manager forces users to comply with stringent password policies. Instead of the system administrator manually assigning passwords and tracking these in a spreadsheet, the password manager generates a password that automatically changes or expires. For example, a developer may be given a password authorizing him to access the server for 60 minutes, or for one-time use. Passwords on target systems are changed on a predefined basis. This is ideal for users who may need to get to the server for a specific purpose but should not be given permanent access.

The software also includes password object administration, dual controls (specifying that access to highly sensitive Adj. 1. highly sensitive - readily affected by various agents; "a highly sensitive explosive is easily exploded by a shock"; "a sensitive colloid is readily coagulated"  passwords requires confirmation by two authorized users), plus utilities to integrate authentication (1) Verifying the integrity of a transmitted message. See message integrity, e-mail authentication and MAC.

(2) Verifying the identity of a user logging into a network.  support for any Radius compatible authentication server A device used in network access control. It stores the usernames and passwords that identify the clients logging in, or it may hold the algorithms for token access (see authentication token). , such as Vasco, Safeword, ActivePack, RSA (1) (Rural Service Area) See MSA.

(2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key.  SecurID or Alladin OTP (1) (One Time Programmable) Refers to programming content or logic into chips such as EPROMs and EEPROMs, which cannot be reversed. See antifuse.

(2) (One Time P .

Cyber-Ark's patented Vaulting solutions allow organizations to protect and share information both over the Internet between discrete enterprises and manage critical information within a single network. The company's technology is used to secure the most valuable assets of some of the largest military, banking, manufacturing, airline and governmental enterprises in the world. Password Vault is an extension of this technology specifically built for administrative passwords. Cyber-Ark's Password Vault offering provides a 'Safe Haven' within the enterprise where all administrative passwords can be archived, managed and shared.

About Cyber-Ark

Cyber-Ark Software is an Information Security company that develops and markets digital vaults for securing and managing sensitive information within and across global enterprise networks. Based on it's patented Vaulting Technology(TM), Cyber-Ark's digital vault products include: The Inter-Business Vault, a secure infrastructure for cross-enterprise data exchange of highly-sensitive information; The Sensitive Document Vault, which allows enterprises to secure, store and manage highly-sensitive documents; and the Enterprise Password Vault, which provides solutions for secure storage and management of administrative, emergency and service account passwords. Today Cyber-Ark enjoys strong customer relationships with more than 150 Global 1000 companies around the world.

Founded by a group of leading military security experts and computer engineers, Cyber-Ark Software is privately held and backed by some of the world's most successful venture capitalists, including Jerusalem Venture Partners, Seed Capital Partners (a SOFTBANK Affiliate), JP Morgan/Chase Partners and Vertex Management.

The Company is located in Dedham, Mass. and on the World Wide Web at www.cyber-ark.com
COPYRIGHT 2006 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2006, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Business Wire
Date:Jan 9, 2006
Words:824
Previous Article:Cubist Pharmaceuticals Announces Fourth Quarter 2005 Net Product Revenues of $36.6 Million and Year-End 2005 Net Product Revenues of $113.5 Million;...
Next Article:Assured Guaranty Ltd. Announces Agreement to Renew FSA's Reinsurance Contracts with Subsidiaries.
Topics:



Related Articles
Vocent offers voiceprint-enabled Password Reset. (New Products).
Vaulting Technology in Europe.
Central Password Manager.
Password overload syndrome.
ENHANCED ASAP INCLUDES SYBASE PASSWORD STRENGTH TESTING.
It security.
Computer passwords 'up for grabs'.
Super Power Passwords--the threat from within.
Cyber-Ark ranked in the 2006 Deloitte Technology Fast 500 EMEA.
Privileged password management: combating the insider threat and meeting compliance regulations for the enterprise.

Terms of use | Copyright © 2012 Farlex, Inc. | Feedback | For webmasters | Submit articles