Hi [[ session.user.profile.firstName ]]

Venafi - Machine Identity Protection

  • Date
  • Rating
  • Views
  • Audit de la protection des identités machines
    Audit de la protection des identités machines
    Stéphane Dorchin, Directeur Europe du Sud Recorded: Apr 18 2019 57 mins
    Tout comme nous devons sécuriser les identités humaines, nous devons également gérer et sécuriser efficacement les identités machine, qu'il s'agisse de serveurs, d'applications, d'appliances, d'appareils IoT ou d'autres systèmes. Les certificats TLS (Transport Layer Security) et les clés privées associées servent de méthode principale pour établir les identités machine. Cependant, les entreprises n'investissent pas dans la protection de l'identité de la machine, même si des clés et des certificats non gérés et non sécurisés sont autant de risques d’arrêt de services et de vulnérabilités.

    Cette session présente une approche en 5 étapes de la sécurité TLS, y compris ce qui est réalisé et peut être audité à chaque étape. Cette session permettra aux auditeurs d’évaluer la maturité globale de la protection des identités machine de leur organisation.

    Date: Jeudi 18 Avril 2019
    Heure: 14H30 – 15H15

    Enregistrez-vous
  • What You Need to Know: Machine Identity Protection Development Fund
    What You Need to Know: Machine Identity Protection Development Fund
    Kevin Bocek, VP of Ecosystem & Threat Intelligence Recorded: Apr 16 2019 29 mins
    Machine identities are exploding. Complexity, speed, and risk will only increase. Venafi envisions were all machine identities are protected. Where there is complete intelligence and the highest speed automation. To accelerate this vision for customers, Venafi launched the Machine Identity Protection Development Fund. With $12.5 Million, the Development Fund sponsors the development of integrations with the Venafi Platform accelerating the expansion of the Venafi ecosystem.

    The Development Fund enables you to expand your strategy for machine identity from DevOps, cloud, analytics, and much more. And it delivers these technology outcomes quickly so you and your team can successfully to protect more machine identities faster – now and in the future.

    Join this webinar and learn:
    • How the Development Fund will future-proof your investment in technology infrastructure
    • What funded integrations are currently in development
    • Where the Development Fund will invest in DevOps, cloud, and the ecosystem of the future
    • How you can help identify technology needs and developers for consideration

    Register now!
  • Protection des identités machines
    Protection des identités machines
    Stephane Dorchin, Directeur Europe du Sud Recorded: Apr 4 2019 60 mins
    Il existe deux acteurs sur chaque réseau – les personnes et les machines - et les deux doivent être sécurisés. Les personnes (utilisateurs) utilisent des identifiants et des mots de passe pour se connecter et s’authentifier sur un réseau. Les machines quant à elles utilisent des clés et des certificats pour la communication et l'authentification machine à machine. Des milliards d’Euros sont dépensés chaque année pour sécuriser la gestion des identités et des accès, mais la quasi-totalité des dépenses est consacrée à la sécurisation des identifiants et des mots de passe, et pratiquement rien pour la protection des clés et des certificats. 


    Les identités machine non protégées sont des cibles faciles et lucratives pour les cybercriminels. Ils utilisent des clés et des certificats non protégés pour écouter des communications privées, rendre les sites de phishing plus efficaces, des codes malicieux valides, et masquer leurs activités néfastes dans le trafic crypté, notamment pour faciliter l’introduction de logiciels malveillants et l’extraction de données confidentielles.

    Dans cette présentation, nous aborderons les différents types d'identités machine et leurs proliférations sur votre réseau. Vous verrez le rôle et le cycle de vie des identités machine, ainsi que le niveau insuffisant de leur protection. Nous examinerons ensuite les risques actuels et les nouveaux risques qui y sont liés. Nous conclurons avec les mesures que vous pouvez prendre immédiatement pour maîtriser ces risques.

    Date: Jeudi 4 Avril 2019
    Heure : 14H00 – 15H00

    Enregistrez-vous
  • Extend the Reach of Your Venafi Platform
    Extend the Reach of Your Venafi Platform
    Michael Thelander, Director of Product Marketing Recorded: Mar 27 2019 47 mins
    Your Venafi Platform provides visibilty, intelligence and automation for the thousands of machine identities used by your enterprise. But what about machine identities out “in the wild” you know nothing about? Think about rogue certificates spun up by your own development teams or malicious certificates meant to phish your customers and employees. And then there’s the separated networks or cloud workloads that are impossible to reach or difficult to scan.

    Venafi TrustNet is an add-on for your Venafi Platform that continually assesses global IPv4 addresses to find two things: 1) SSL/TLS certificates that are yours (but that you may not know about) and 2) “Look-alike”certificates that are meant to manipulate or spoof your brand and domains.

    Attend this webinar and learn how Venafi TrustNet can help you identify hard-to-find SSL/TLS certificates associated with your brand or domain:

    -Global, Serverless Certificate Discovery: Find external-facing certificates your Venafi TrustAuthority implementation can’t see
    -Certificate Compliance Scores: Identify non-compliant certificates wherever they are
    -Increased Risk Awareness: Highlight weak or risky cryptography and configurations in certificates beyond those in your on-premises Venafi solution
    -Trusted Domain Protection: Identify suspicious variations of your trusted domain names

    Register today to see how Venafi TrustNet can broaden your SSL/TLS certificate security coverage and protect your brand.

    ***Upcoming Webinar***
    April 16 - What you need to know: Machine Identity Protection Development Fund: http://bit.ly/2OfKyP5-venafi-mipdf
  • Best Practices for Protecting Your Business from Cybercrime
    Best Practices for Protecting Your Business from Cybercrime
    Michelle Drolet (Towerwall), Michael Thelander (Venafi), William Peteroy (Gigamon), Kalani Enos (kenos) Recorded: Feb 19 2019 62 mins
    Cybercrime has evolved from random activities being carried out by individuals into a billion dollar illegal industry that continues to grow. How is cybersecurity keeping up with the rise of cybercrime?

    Join this panel of security experts to learn more about:
    - Trends in cybercrime and lessons learned in 2018
    - The cost of data breaches
    - Rise of cryptojacking and ransomware
    - Who are the players who make up the world of cybercrime (e.g. programmers, distributors, fraudsters, etc.)
    - The CISO vs the cybercriminal
    - Best practices for protecting your business

    Speakers:
    - Michelle Drolet, CEO, Towerwall
    - Michael Thelander, Director of Product Marketing, Venafi
    - William Peteroy, Security CTO, Gigamon
    - Kalani Enos, Founder & CEO, kenos Technologies (Moderator)
  • What Works in Certificate and Key Management: Enabling Secure Digital Business
    What Works in Certificate and Key Management: Enabling Secure Digital Business
    John Pescatore, Dr. of Emerging Sec Trends @ SANS Institute & Troels Oerting, Head of Global Center for Cyber Sec @ WEF Recorded: Feb 5 2019 49 mins
    Encryption through SSL/TLS and VPNs can help raise the bar for attackers looking to capture or compromise your sensitive information. However, doing encryption badly can lead to a false sense of security. Plus, SSL/TLS certificate management errors can disrupt your business, triggering outages when certificates expire or are revoked. Effective key and certificate management is critical to enabling secure business and maintaining high service levels.

    During this SANS WhatWorks webcast, Troels Oerting, Head of Global Center for Cyber Security of World Economic Forum, shares details of why he selected Venafi and how he deployed the solution to enable discovery and management of encryption keys and certificates.

    Watch the webinar to learn the following:
    •How to avoid business disruption from expired certificates
    •The benefits of securing SSL/TLS certificates to protect sensitive information
    •Metrics used to demonstrate the value of improved key and certificate management

    Get behind-the-scenes insights from this true security leader – register for the webinar today!
  • Machine Identity Protection LIVE
    Machine Identity Protection LIVE
    Jeff Hudson, CEO, Venafi Recorded: Dec 13 2018 54 mins
    As the number of machines on our networks continues to explode how can we make sure that connections and communications between them remain secure? A new era of machine identity protection begins on December 13 at 9 pmPT/12 pm ET.

    Join top industry analysts and executives for an hour of innovative and groundbreaking insights about bold new ways to extend your machine identity protection. Hear directly from industry leaders who are excited about this new development, including:

    •Rich Baich, CISO, Wells Fargo
    •Andras Cser, Vice President and Principal Analyst, Forrester Research
    •Armon Dadgar, Co-founder and CTO, HashiCorp
    •Jeff Hudson, CEO, Venafi
    •John Morgan, GM, Security Business Unit, F5 Networks
    •Jake Reynolds, General Partner, TCV
    •Dan Timpson, CTO, DigiCert

    Venafi’s goal is to provide organizations the freedom to operate with confidence through secure communication and connections, with a high level of trust in their machine identities on their network. Please join this innovative and ground breaking discussion about Machine Identity Protection. Register now!
  • Government Investigations of a Breach: When Machine Identity Protection Fails
    Government Investigations of a Breach: When Machine Identity Protection Fails
    Kevin Bocek, VP, Security Strategy & Threat Intelligence, Venafi Recorded: Dec 12 2018 47 mins
    What was the biggest breach in 2017? How did it happen? Regulators in the U.S. and U.K. have released a detailed analysis, highlighting how a failure in Machine Identity Protection enabled this complex, lengthy, hidden attack.

    A single untracked, unmanaged digital certificate was left to expire and became the foundation of this attack. Certificates authenticate machine identities for trusted machine-to-machine connections and, when compromised, create a gaping hole in an otherwise well-layered defense.

    Join this webinar and learn how cybercriminals:

    • Use an expired certificate to hide in encrypted traffic
    • Exploit additional vulnerabilities and pivot deeper into the network
    • Continue their attack for months and pilfer millions of files

    Today, well over half of attacks hide in encrypted traffic—and analysts warn that this will only increase. Learn how to defend against these types of attacks and architect effective machine identity protection for your organization. Register now!
  • Machine Identities: The Next Step for IAM
    Machine Identities: The Next Step for IAM
    Michael Thelander, Director of Product Marketing @ Venafi Recorded: Nov 14 2018 47 mins
    People rely on user names and passwords to identify themselves to machines so they can get access to networks and data.

    Machines also need to identify themselves to each other, but they don’t use user names and passwords. Instead, they use machine identities.

    We all know that the number of machines on networks is growing exponentially because the digital transformation that is happening is completely dependent on machines, not people.

    We spend over eight billion dollars protecting human identities (IAM), but almost nothing protecting machine identities.

    Bad guys know this. They now devote more time and resources to stealing machine identities.
  • What Works in Certificate and Key Management: Enabling Secure Digital Business
    What Works in Certificate and Key Management: Enabling Secure Digital Business
    John Pescatore and Troels Oerting Recorded: Oct 3 2018 49 mins
    Encryption through SSL/TLS and VPNs can help raise the bar for attackers looking to capture or compromise your sensitive information. However, doing encryption badly can lead to a false sense of security. Plus, SSL/TLS certificate management errors can disrupt your business, triggering outages when certificates expire or are revoked. Effective key and certificate management is critical to enabling secure business and maintaining high service levels.

    During this SANS WhatWorks webcast, Troels Oerting, former Chief Security Officer at Barclays Bank, shares details of why he selected Venafi and how he deployed the solution to enable discovery and management of encryption keys and certificates.

    Watch the webinar to learn the following:
    •How to avoid business disruption from expired certificates
    •The benefits of securing SSL/TLS certificates to protect sensitive information
    •Metrics used to demonstrate the value of improved key and certificate management

    Get behind-the-scenes insights from this true security leader – register for the webinar today!

Embed in website or blog