Venafi Unveils TrustNet Certificate Reputation Service

SALT LAKE CITY, March 11, 2015 /PRNewswire/ -- Venafi, the leading provider of Next Generation Trust Protection, today announced Venafi TrustNet, a cloud-based reputation service designed to protect enterprises from the growing threat of cryptographic key and digital certificate abuse. According to new Ponemon Institute research, 100% of over 2,300 organizations surveyed have responded to multiple attacks on keys and certificates in the last two years. Threat research from FireEye, Intel, Kaspersky, and Mandiant consistently identifies the misuse of keys and certificates as an important part of APT and cybercriminal operations to infiltrate and steal intellectual property (IP), other valuable data, and money. TrustNet detects anomalies and vulnerabilities associated with keys and certificates across the Internet and alerts security teams. TrustNet works with the existing Venafi products so customers can quickly respond by blacklisting certificates and replacing vulnerable keys and certificates.

The world's economy is dependent on the trust keys and certificates provide. Without them, it is impossible to identify websites, transactions, communications, apps, and more as trusted or not. The new Ponemon Institute, 2015 Cost of Failed Trust Report, found the average Global 5000 organization has almost 24,000 keys and certificates used to identity applications, devices, and servers. The growing use of SSL/TLS has attracted cybercriminal interest in order to gain trusted network status and to exfiltrate data undetected. Gartner expects 50% of network attacks to use SSL/TLS by 2017. (Gartner ID G00258176)

Intel cybersecurity researchers predict the next large-scale hacker marketplace will be in the sale of stolen digital certificates. The cybercriminal marketplace already prices a stolen certificate at almost $1000 each, and rising. As a result of increased attacks on keys and certificates, half of IT security professionals now believe the trust their business is dependent on to operate is in jeopardy according to Ponemon research.  

TrustNet is the first service that identifies the malicious use of certificates. It scores their reputation by combing global sensor networks, data collection, analytics, and tuned algorithms along with data submitted by Venafi enterprise customers. TrustNet provides real-time reputation on millions of digital certificates globally as well as the trustworthiness of the 1,300 Certificate Authorities (CAs) worldwide. TrustNet also monitors the Google Certificate Transparency initiative to quickly identify fraudulent issuance of digital certificates. With this insight, TrustNet can help stop Man-in-the-Middle attacks, advanced spear-phishing, website spoofing, and other attacks enabled by the misuse of keys and certificates.

"The age of blind trust is over," said Jeff Hudson, CEO of Venafi. "Certificates and keys are the global foundation of our online safety, security, and privacy. They are being attacked with increasing frequency across every business sector. That's why we're launching Venafi TrustNet certificate reputation service to protect our customers. Venafi is the only one standing between the Global 5000 and bad guys abusing the trust provided by keys and certificates."

Together with Venafi TrustAuthority and Venafi TrustForce, these solutions create an integrated defense to help enterprises protect, detect, and respond to vulnerabilities associated with Secure Socket Layer (SSL) certificates, Secure Shell (SSH) keys, and mobile certificates, securing any key and any certificate, anywhere.

TrustNet is available for customers this month. For more information, please visit: https://www.venafi.com/TrustNet

About Venafi

Venafi is the market-leading cybersecurity company in Next Generation Trust Protection (NGTP). As a Gartner-recognized Cool Vendor, Venafi delivered the first Trust Protection Platform™ to secure cryptographic keys and digital certificates that every business and government depends on for secure communications, commerce, computing, and mobility. With little to no visibility into how the tens of thousands of keys and certificates in the average enterprise are used, no ability to enforce policy, and no ability to detect or respond to anomalies and increased threats, organizations that blindly trust keys and certificates are at increased risk of costly attacks, data breaches, audit failures, and unplanned outages.

As part of any enterprise infrastructure protection strategy, Venafi TrustAuthority™ and Venafi TrustForce™ help organizations regain control over trust in the cloud, on mobile devices, applications, virtual machines, and network devices by protecting Any Key. Any Certificate. Anywhere™. Venafi prevents attacks on trust with automated discovery and intelligent policy enforcement, detects and reports on anomalous activity, and remediates errors and attacks by automatically replacing misconfigured and compromised keys and certificates. Venafi Threat Center provides primary research and threat intelligence for trust-based attacks.

Selected as a 2013 FiReStarter and Red Herring Top 100 company, Venafi customers are among the world's most demanding, security-conscious Global 2000 organizations in financial services, insurance, high tech, telecommunications, aerospace, manufacturing, healthcare, and retail. Venafi is backed by top-tier venture capital funds, including Foundation Capital, Pelion Venture Partners, and Origin Partners. For more information, visit www.venafi.com.

SOURCE Venafi

Related Links

https://www.venafi.com

WANT YOUR COMPANY'S NEWS FEATURED ON PRNEWSWIRE.COM?

440k+
Newsrooms &
Influencers

9k+
Digital Media
Outlets

270k+
Journalists
Opted In

GET STARTED