3 min read

Two security vendors unveil easier encryption and certificate management

Securitysecurity

Two security vendors have added to the capabilities of their offerings, one by expanding the ability of organizations to encrypt more data easily, and another giving customers a better way to manage the digital certificates they buy.

Israel-based Secure Islands said Tuesday the latest version of its IQProtector suite now has what it calls data interceptors for almost any place where data is created: applications, cloud or mobile devices.

Company founder and CEO Aki Eldar said in an interview that version 5.0 means organizations no longer have to limit data encryption to the most sensitive material. Now it can be extended to all unstructured data.

The previous versions of the suite classified and encrypted data only at end points. Version 5.0 adds three new tools:

— Application Interceptors are integrated into business applications at the organizations to encrypt files generated or transiting through them, Interceptors are available for email servers such as Microsoft Exchange or enterprise content management systems such as OpenText, and SharePoint.

–Cloud Interceptors deal with files uploaded or downloaded to storage, collaboration and business applications;

–Server Interceptor: Provides server-mode data event interception and locally performed classification and protection.

IQProtector uses Microsoft’s Rights Management Services (RMS) for encryption and access control.

Eldar didn’t detail pricing, except to say it varies by the number of end users and the number of integrators purchased.

Although the company was formed eight years ago it is relatively new in North America. It’s New York sales office was set up only three months ago. So far there are no Canadian customers. It is sold through a number of partners including Hewlett-Packard.

Large companies can have hundreds or thousands of certificates to manage, explained CSO Jason Sabin, which are hard to keep track of — particularly if more than one person is buying them on its behalf.

“This becomes not only a management problem but could also be a security risk,” he said in an interview. “If you have someone issuing a certificate who is not an official person in the organization they could be impersonating the company.”

The service — which for the time being is free — connects to multiple data sources to get certificate information. so whoever manages digital certificates can keep an eye on all corporate sub-domains.

It does this by parsing data from all providers who keep Google Certificate Transparency databases, which log legitimate certificates. Chrome browsers require not only an Extended Validation (EV) certificate for SSL/TLS, the certificate also has to be logged into one of the 80 third party GCT databases.

The service also includes phishing detection that can find other domains hackers are trying to use digital certificates to impersonate your company.

Overall simply log into a portal where they buy certificates to manage them. DigiCert certificate management “greatly enhances the ability of (administrators) to monitor all publicly trusted certificates that are being logged and issued,” Sabin said.

It comes as part of the cloud-based service certificate buying process. Administrators simply log into the same portal for certificate management.

DigiCert also announced a new Express Install utility for Windows and Linux. which automates the configuring and installation of digital certificates. There are 15 steps to add a certificate to Microsoft IIS, he said. With Express Install you can convert an HTTP website to HTPPS in one click”

Leave a Reply

Your email address will not be published. Required fields are marked *

Post comment