Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

Data Security Improvement With Shared Accounts Management

Passlogix : 20 August, 2010  (New Product)
Passlogix has upgraded v-GO Shared Accounts Manager for providing improved security and compliance through individual user identifications on shared accounts
Passlogix has announced new protections against security breaches and regulatory compliance problems with an upgrade to v-GO Shared Accounts Manager (v-GO SAM), its solution for controlling administrative access to enterprise data assets. v-GO SAM strengthens security for service accounts - used to connect end users to databases and other application services - by concealing and updating sensitive passwords as well as ensuring that individual users can be identified in the event of a data compromise.

The upgrade thwarts efforts to use service account passwords to pilfer sensitive information ranging from credit card information to confidential health records and beyond. Like v-GO SAM's established ability to control and track shared IDs and passwords required for administrative accounts, it also helps organizations fulfill regulatory mandates such as PCI DSS, HIPAA and SOX by documenting all access attempts as well as the specific user involved.

v-GO SAM's new support for service accounts plugs a security and compliance hole caused by the difficulty of changing service account passwords that are embedded in the application code and distributed on multiple client workstations and application servers. These passwords are typically created at installation time and never changed, providing an opportunity for malicious users or data thieves to have unrestricted access to data ranging from credit card information to confidential health records.

v-GO SAM now blocks these security and compliance threats by enabling organizations to:

* Store and encrypt all service account credentials in a central repository, removing them from multiple registry files and other locations where they are visible to IT personnel and potential hackers as well as difficult to manage and update.

* Automate password changes on any user-defined schedule, eliminating the static password problem and thereby minimizing the risk of a security compromise.

* Prevent data access without application login, providing accountability by ensuring that all application activity can be tied directly to an individual logged-in user.

* Manage single-user, shared administrator and service account credentials with the same infrastructure, eliminating the need for a separate hardware or software vault system that is otherwise required to manage privileged passwords.

"Service accounts are like a back door to some of the most sensitive data in an enterprise. Failing to manage service account passwords - as most organizations do - is like handing a hacker the keys to a database, whether it be credit card, online banking, healthcare or all of a business' customer lists, financials and HR information," said Passlogix product manager Matt Berzinski. "v-GO SAM can now eliminate these vulnerabilities and provide the accountability needed to address regulatory prohibitions against the use of shared IDs."

v-GO SAM also provides secure and auditable access to administrator accounts requiring shared IDs, such as those used to access root accounts, routers, firewalls and other IT assets, and for temporary workers and contractors who must used shared IDs. The solution allows users to check out credentials according to pre-established policies - including user role or group membership in the corporate directory as well as specific times and days, time windows, or maximum number of logons - and ties each checkout to the specific user to create an audit trail for compliance and forensic purposes in the event of a data breach. Users never see shared IDs/passwords so they cannot share them, either inadvertently or maliciously.

By pairing v-GO SAM with v-GO Single Sign-On, Passlogix's market-leading enterprise single sign-on (ESSO) solution, enterprises can consolidate the management of both conventional and shared credentials in a single system with a common strategy and interface. This ability to eliminate multiple password management infrastructures is unique in the industry.

Both v-GO SAM and v-GO Single Sign-On are key components of the v-GO Access Accelerator Suite, an integrated set of software solutions that eliminate everyday challenges in sign-on, authentication and provisioning that decrease business productivity.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo