Critical Systems at Risk Due to Poor Key and Certificate Management

Share  
1  |  2  |  3  |  4  |  5  |  6  |  7
Previous Next

Click through for results from a survey on certificate and key management, conducted by Venafi in conjunction with Osterman Research.

Topics : A Big Market for Big Data Jobs, Midmarket CIO, IT Management Automation, SharePoint, Technology Markets

Venafi Inc., the inventor and market leader of enterprise key and certificate management (EKCM) solutions, in conjunction with Osterman Research, recently released the results of an extensive survey designed to determine how well organizations understand the risks associated with poor key and certificate management. Based on responses from 174 IT and information-security professionals, the survey reveals a significant lack of knowledge, understanding and oversight, resulting in a series of information-security vulnerabilities.

Fifty-four percent of respondents, for example, admit to having an inaccurate or incomplete inventory of their Secure Socket Layers (SSL) certificate populations. Deploying encryption solutions without maintaining comprehensive certificate and key inventories is a worst practice that jeopardizes vital business systems and processes and exposes organizations to substantial risk of security and compliance incidents.

"The importance of sound certificate management practices is highlighted by the repeated certificate authority (generally referred to as CA) breaches over the past year," said Michael Osterman, president of Osterman Research. "We were startled by the lack of urgency regarding the issue. When considered in tandem with the high-value target CAs represent to hackers, we can predict more CA breaches and more security threats than we saw in 2011."

"Organizations protect mission-critical and often regulated data with hundreds or thousands of encryption keys and digital certificates," said Jeff Hudson, Venafi CEO. "But as this survey reveals, too many companies have inaccurate or incomplete data about their security assets. The unquantified and unmanaged risks these certificates and keys pose is significant — risks magnified through the increasingly pervasive use in corporate data centers, cloud-based systems and mobile devices."

 

More Slideshows

GlassdoorNetworkMistakes0x Six Networking Mistakes Job Seekers Often Make

If you've been spending hours networking but don't feel that efforts have produced positive results, it's possible that you're making some very common networking mistakes. ...  More >>

Global8-290x195 Five Disruptive Forces Changing the Role of the Systems Integrator

The cloud is transforming the SI focus from implementation/customization to long-term business solutions that deliver the agile, future-proof technology roadmaps today's C-level executives demand. ...  More >>

Building5-190x128 The 10 Fastest Growing IT Job Markets in the U.S.

Where are these jobs being creating? It might surprise you to know that many of the jobs are appearing in the South and Southeastern U.S. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.