30^th January 2012, Wetherby, UK, Swivel Secure, the UK’s specialist authentication vendor has been positioned in the 2012 Gartner User Authentication Magic Quadrant as offering the broadest range of deployment options of any vendor discussed in the report.

Gartner is one of the world’s foremost and widely respected technology analyst companies. The User Authentication MQ was authored by Ant Allen who is Gartner’s research Vice President focussed on Identity and Access Management solutions with over 28 years of industry experience.

Chris Russell Swivel’s Vice President of Engineering commented “Being included in the Gartner Magic Quadrant is recognition of Swivel’s maturity and importance in the overall user authentication sector. Being singled out as offering the broadest range of deployment options amongst all the other vendors is highly significant for us. We designed Swivel to meet the full range of user and security requirements of large scale organisations so it is great to hear that this approach has been recognised in this hugely influential industry report.What is also gratifying is the recognition of the quality of support we give to our customers and partners.”

Read full press release here

“Many high-profile, externally facing and internally facing system outages are traced to unplanned X.509 certificate expiry,” per Gartner, Inc., in the X.509 Certificate Management: Avoiding Downtime and Brand Damage report.

Gartner also reports that, “Organizations with roughly 200 or more documented X.509 certificates in use are high-risk candidates for unplanned expiry and having certificates that have been purchased but not deployed.”

Download the Gartner report and learn more about the “X.509 Certificate Management Functions”:

• Discovery

• Ownership

• Validation

• Renewal/provisioning

• Audit

Download full report here

- – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – -
Venafi (Venafi Director Series)
Venafi, named a Gartner “Cool Vendor” in 2010, is a point solution provider. Venafi is the leader in X.509 certificate management for internal and external systems and applications. Unlike certificate authority certificate management solutions, Venafi supports virtually all certificate issuers natively and can renew certificates from nearly any type of certificate issuer, providing flexibility for complex heterogeneous environments composed of certificates issued by various certificate authorities.
- – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – - – -

For more information contact a Venafi sales representative today on 0845 094 8828 or email venafi@cohorttechnology.com

This year’s SC Magazine multifactor authentication product group test has awarded Swivel an almost perfect 4.75 out 5 stars based on a range of criteria including feature set, ease of use, performance, and value for money.

With only a slight question mark over the pricing model knocking us into second place out of 11 (this is something we are aware of and are addressing in the next release) this is a fantastic endorsement for the technology and confirms our place as leaders in the tokenless authentication space.

View SC Magazine product review

Security experts urge users and enterprises to adopt full disk encryption and proper key management to secure sensitive data from accidental exposure.

Concerns about data breaches and privacy violations would spur enterprises to adopt encryption and use it effectively, according to security experts.

Organizations are beginning to assume that the firewall has already been compromised and are relying on ubiquitous encryption to protect data across the enterprise, according to Jeff Hudson, CEO of Venafi. In the past, security measures assumed that firewalls and other perimeter defenses were enough to keep the bad guys out. Recent high-profile data breaches proved that attackers were able to still get into the network, and had free rein because the data was not protected at all, according to Hudson.

Venafi predicted that 2012 would be the “year of ubiquitous encryption.”

Organizations that have adopted encryption still encounter problems because they are not following best practices for encryption key management, according to Hudson. Organizations struggle to keep track of what keys are being used and who has access to them. Encryption would be a “defining issue” in the year ahead, he said.

When employees leave, they may take the keys with them, leaving the organization unable to access the data, Tim Matthews, senior director of product marketing at Symantec, told eWEEK. A recent Symantec study found that poor key management and lack of control over the technologies being used could cost the organization an average of $124,965 a year.

Read full article here

How to protect your corporate information from hack attacks.

Even the largest corporations have had difficulty defending themselves against targeted data attacks from ‘hacktivist’ groups, highlighting the importance of ensuring sensitive data is kept secure.

With a significant rise in the popularity of cloud-based CRM and other corporate applications, many companies have devolved responsibility for the security of their data to the cloud application’s user access infrastructure. However, this can often be insufficient – particularly when only a password and username is required to access critical data.

IT security expert Chris Russell, offers some advice on locking down access to cloud applications, enabling your business to lever the benefits of cloud-based services:

1. Ensure users’ credentials are not stored within the application

Storing user information along with a cloud-based application is risky. Just one successful hack can leave the digital identities of your entire database compromised. The only way of ensuring that users are protected is by retaining local control of users’ digital identities within the corporate environment.

2. Do not rely on usernames and passwords to protect critical data

Many hack attempts are successful because attackers only need to crack a simple username/password combination. This makes it easy for anyone, even those with not much more than basic IT skills, to crack a system’s security shield.

3. Two-factor authentication should be the minimum standard

Strong authentication solutions add an additional layer of security to a corporate network. Adding a second tier of authentication – based on something that only the authorised user knows, combined with something that they have – means that IT managers can be confident that anyone accessing the network is the person they say they are.

4. Authenticating mobile devices is not enough

Increasing numbers of organisations have started migrating from token-based legacy systems, in favour of cheaper and simpler mobile phone-based options for their two-factor requirements. A number of solutions send a one-time-code as a text message to the user’s phone.

While this is a more secure approach than that offered by usernames and passwords, it does not confirm the identity of the user – only that the phone was present. For maximum security the user needs to apply something only known to them, to confirm they are who they say they are.

Read full article here

LEARN MORE ABOUT SWIVEL SECURE
To learn more about Swivel’s PINsafe two factor authentication platform click here
Alternatively, contact a Swivel sales representative today on 0845 094 8828