ID: IRCNE2011091250
Date: 2011-09-13
According to "itpro", Symantec today announced a new cloud-based product to help large enterprises deal with the ever-growing number of security certificates within their organisations.
The Symantec Certificate Intelligence Centre enables companies to manage the certificates they run – which ensure secure connections between internal applications and web browsers – from one central location located in the cloud, regardless of which Certificate Authority (CAs) they come from.
There are currently more than 650 CAs providing Secure Sockets Layer (SSL) certificates and the organisations have been coming under increased scrutiny due to high profile hacking incidents.
The issue with numerous companies using the same relatively small group of SSLs is if a hacker manages to break into one of the CAs servers, it could affect thousands of firms, as well as millions of users.
Last week saw DigiNotar hacked by a cyber criminal, leading to more than 500 fake website certificates being issues for the likes of Gmail. The unidentified hacker then threatened further CAs, leading to GlobalSign halting its own issuing of certificates.
So, Symantec’s launch is coming at a time when SSL security is of high priority. Features including automated scanning, advanced notification – if a certificate is about to expire, for example – and in-depth reporting in the Symantec Certificate Intelligence Centre, helps keep a closer eye on an issue, whilst making it more scalable and accessible through the benefits of a cloud model.
He concluded: “Cross-platform approaches, such as Symantec Certificate Intelligence Centre, can provide the tools to tackle this challenge through greater degree of visibility into the state and distribution of certificates and by improving rates of automation.”
The new service, aimed at the large-scale enterprise, is available now.
Related Links:
Hackers acquired Google digital certificate
Hackers may have stolen over 200 SSL certificates
GlobalSign hopes to reopen tomorrow despite web server hack
- 2