|
|
Home | Products | SafeKeeping | SafeKeeping Overview
SafeKeeping Overview
 |
|
|
Key Features |
- Can support up to 20000 target resources from a single instance
- Conformance with compliance legislation
- Dual Control release mechanism
- Fully secured
- Fully encrypted
- Comprehensive auditing
|
|
- Clientless operation
- Can be delivered as a hardened appliance or software installation as required
- Secure web based interface
- Secure, automated backup for rapid appliance swap in even of disaster recovery
|
Security |
- Credentials stored under AES 256bit encryption
- Credentials delivered for successful requests over HTTPS
|
|
- Support for strong two-factor authentication with Defender
- Security hardened appliance with integral firewall
|
Compliance |
- Fulfils the needs for transparency, accountability under compliance guidelines such as SOX, BASELII, HIPAA etc
- Full audit of all actions, requests, authorisations, scheduled and requested credential changes
|
|
- Data interchange with office products via XML
- Comprehensive web based reporting
- Full appliance logging
|
Procedure & Policy |
- Delivered passwords are available for limited, user definable period before scheduled reset
- Dual control with or without two-factor authentication can be required for release
- Release policies configurable to control release criteria, date, time etc
|
|
- Passwords generated in accordance with user defined strong password policies
- User definable, retained password history
|
 |
What happens when infrastructure fails? |
It’s gone midnight and your pager goes off. A critical piece of your corporate infrastructure has failed and you have been called in to fix it. After arriving in the data centre, you quickly assess you require administrator access, but don’t have the credentials.
This scenario is just one example of when you require access to shared account credentials in a hurry. Accessing these credentials should not compromise your business security policies, and should be in line with your compliance obligations.
Without SafeKeeping in place, this scenario could have a depressingly familiar outcome. Anything from having to rebuild a host from scratch without access to all of its current configuration, through to waking people up in an attempt to determine administrator account credentials.
SafeKeeping offers a solution to the management of these shared account credentials by providing a secure, automated mechanism for the request, authorisation, release and change of shared credentials. |
|
 |
| |
|
|
Why SafeKeeping? |
Administrative passwords, whatever the platform, application or appliance present a unique set of management challenges. The nature of these credentials is that they tend to be role based, and therefore there is a tendency for them to be shared between a number of individual users, leading to the well understood mismanagement scenarios.
Although many organisations have procedural controls and policies governing the use of these credentials, where the number and range of systems is extensive this can clearly be a costly and time consuming exercise. That is of course assuming that the procedures and policies have in fact been followed.
In many cases organisations simply ignore the risks, and hope nothing bad will ever happen to them. The days of the envelope containing credentials in the fire safe is simply past. |
|
These credentials simply must be available at the point of need, such as when rebuilding mission critical infrastructure in the small hours of the morning.
Once a shared account is designated as a SafeKeeping Managed account, a password change for the credentials on that account is scheduled. The new password will be selected in accordance with SafeKeeping’s user defined strong password policies, after which it will not be known to a single individual until it is issued following a successfully authorised release request.
All SafeKeeping’s actions are fully audited to ensure conformance with compliance requirements. |
|
North American Sales Inquiries: 1-800-306-9329 
