Challenges
The business challenges that led the profiled company to evaluate and ultimately select Venafi:
- Managed their keys and certificates using manual tracking and management (e.g., spreadsheet) before Venafi.
- Problems solved using Venafi:
- Identity and access management (including privileged access management / SSH)
- PKI refresh
Use Case
The key features and functionalities of Venafi that the surveyed company uses:
- Venafi products currently being used:
- TrustAuthority SSL
- TrustAuthority SSH
- TrustForce SSL
- TrustForce SSH
- TrustNet
- Systems integrated with Venafi:
- Public Certificate Authority
- Private Certificate Authority
Results
The surveyed company achieved the following results with Venafi:
- Improved their internal IT services SLA from weeks to days with Venafi.
- Found 1500 additional keys and certificates using Venafi that were previously unknown.
- Key and certificate visibility improved by 51-75% after finding additional keys and certificates using Venafi.
- Vulnerabilities to be addressed with Venafi:
- Heartbleed
- SSL inspection for threats
- SHA-1 to SHA-2 migration
- The use of secure key length
- Key and certificate ownership identification
- Key and certificate lifecycle policies
- SSH misuse
- Certificate reputation