Security Experts:

Vormetric Automates Key, Certificate, and Security Object Management

On Monday, Vormetric announced the release of Vormetric Vault, a solution the company says is a scalable all-in-one measure for organizations looking to secure certificates, encryption keys, and other security objects including password files.

Vormetric says that their Vault offering prevents downtime, because the automatic tracking of the aforementioned objects can give administrators notice when something is set to expire. In addition, it can be used to better protect digital assets, such as credit card numbers, password files, and more.

Vormetric LogoManagement-wise, Vormetric Vault centralizes tracking and reporting to a single Web-based GUI, and provides a SDK for bulk key import, ingest, renewal, and removal. This, the company says, removes the need for spreadsheet management often used within IT. Moreover, Vormetric Vault integrated with the Vormetric Data Security Manager (DSM), which provides centralized key management and policy management.

“Even the strongest form of encryption cannot protect data if the keys are stolen, and expired certificates can make data inaccessible, leading to frustration and costly downtime,” said Ashvin Kamaraju, vice president of product development for Vormetric.

“Vormetric Vault mitigates the risk of stolen encryption keys or expired certificates in one automated, easy-to-use solution that takes the guess work out of managing and securing large numbers of these objects.”

Last fall, the company released a whitepaper addressing the need to secure collected data, noting that "relevant and usable security tools," are rarely available for the task. While the whitepaper focuses mainly on Big Data initiatives, the concept applies to granular approaches as well, including the objects that were imagined when developing their Vault solution.

Additional coverage is available here

view counter
Steve Ragan is a security reporter and contributor for SecurityWeek. Prior to joining the journalism world in 2005, he spent 15 years as a freelance IT contractor focused on endpoint security and security training.