Home » The Art of Data Protection
Prakash PanjwaniMarch 10, 2014, 10:21 am EDT
This week SafeNet kicks off the first of three global partner conferences. We have a growing number of partners across the world, ranging from resellers, distributors, service providers, and technology partners. In 2013, almost two-thirds of our Data Protection bookings touched a partner and the 2014 opportunity is bigger than ever.
The understanding of the need for data protection, be it in terms of strong authentication for access control or encryption of data, is stronger than ever before. However, we cannot fully meet that demand without our global partner network. In 2014, we are taking steps to integrate our partners more closely with our overall go-to-market strategy, and we will use these conferences to communicate our new strategy and our plans to grow the ecosystem around us. We will also take this opportunity to unveil several new and exciting enhancements that will take the SafeNet Partner program to the next level.
Looking back at 2013, we (and I mean the combination of SafeNet and our partners) had a very successful year. The accomplishments we made in product leadership across our Authentication and Encryption portfolio have certainly helped our partners drive more sales and build lasting relationships with customers. Let me recap several of these highlights:
While others were talking Cloud, we were executing on Cloud….
- We more than doubled both the number of SafeNet Authentication Service (SAS) customers and enterprise end users in 2013. SAS has emerged as the choice of many enterprise customers looking to move their strong authentication solutions to the Cloud.
- We were able to deliver encryption-as-a-service by using a combination of our ProtectV, KeySecure, and HSM products. The solution allows customers to move their sensitive workloads to private and public cloud environments, while maintaining ownership of encryption keys. This was validated by AWS.
- SafeNet Launched the world’s first Crypto Hypervisor, enabling companies to deliver on-demand, elastic key vaulting and encryption services for data protection across physical, virtual, and cloud environments in minutes instead of days.
Our brand and leadership got recognized….
- For the third straight year, Gartner positioned SafeNet in the Leaders Quadrant in its December 2013 Magic Quadrant for User Authentication.
- SafeNet became the first Authentication Service Provider to receive ISO 27001:2005 Certification, which is the highest attainable credibility ranking and internationally recognized standard for information security management. This certification further demonstrates SafeNet’s leadership in Authentication.
- Our ecosystem continued to grow – we now have more than 200 partners for our Crypto Management solution, something our entire partner network can leverage with their customers.
As we look ahead to 2014 and beyond, one thing is clear – our customer base is much more aware of security needs than ever before. The RSA Security Conference last week is a good indicator of exactly that…we went from having conversations of the use case to detailed discussions of seamless security implementations. Our customers understand that dealing with today’s threats requires a comprehensive approach to data protection. You have to protect the perimeter and you have to implement dramatically more intelligent malware solutions. But, that alone is not enough.
In order to truly secure the information, you need to utilize strong authentication, encrypt the data, and make sure you implement strong encryption management solutions because the more data you encrypt, the harder it is to manage the keys used for encryption. Finally, our customers also realize that delivering solutions means integration of security products with applications they use.
These customer conversations accurately depict three trends that are at the core of our product and go-to-market strategy:
- Encryption Has Finally Come of Age. In January of this year, the BBC published a news story declaring 2014 as the year of encryption. Executives and board rooms are now more keenly aware of encryption and are asking themselves if they are doing everything possible to protect both corporate and customer data.
- Next Generation Authentication. Enterprises will need to turn to external identity providers to help them manage the complexity of secure user access and identity management in face of growing cloud, BYOD, and SaaS adoption.
- The Ecosystem Effect. Security solutions are only as good as how easy they are to adopt, which means integration with third-party applications is critical. Moreover, leveraging the solution across multiple applications is important for our customers to get the most out of their investment in data protection solutions.
SafeNet is really well positioned to meet these customer needs, and we are very excited about the market opportunity before us and our partners. I am looking forward to meeting many of our partners out there over the next few weeks.
The question isn’t whether you should partner with SafeNet – it is whether you can afford not to?
Mor AhuviaMarch 6, 2014, 02:23 pm EDT
The past few weeks have served as a wake-up call to universities and colleges who have yet to bolster their online authentication of students and staff. Leading higher education campuses, such as Harvard and Yale, already deploy 2FA, and those who are still considering extra protection may find the latest breach news rather convincing.
The University of Maryland reported it was a victim of a breach late last month, scoring 6.7 on the Breach Level Index. The breach exposed a database of over 300,000 records containing such personal details as name, SSN, DOB, and University identification number. In Indiana University, as a result of the oversight of certain protection mechanisms, three web crawlers were discovered to have accessed over 140,000 students’ details, including names, addresses, DOBs and SSNs, as well as students’ enrollment and degree details.
Universities, like other public institutions, keep large databases of user information, some of which is sensitive and can be leveraged for identity theft, making them a prime target for phishing, hacking and social engineering. In fact, in an effort to secure resources provided to its “grantees,” including universities and colleges, The Federal Information Security Management Act (FISMA) places the burden of securing information provided by the federal government (US Dept. of HHS) squarely on the shoulders of the higher education institution.
According to a survey conducted by Internet2.edu and InCommon, two non-profit organizations acting to improve technology in the realm of academia and research, as of 2011, 44% of the individuals surveyed said their campuses employ two-factor authentication, with the most common use cases being remote authentication to the campus network (VPN), on-site sysadmin access, SSH authentication, and on-campus database administration.
As for the type of 2FA implemented in Ivy League schools, these vary widely: Dartmouth use PKI certificate-based USB tokens, while Harvard uses their software version. Princeton secures authentication with OTP tokens, and similarly, Yale staff can opt to either generate OTPs on a mobile app or carry traditional hardware tokens (Yale’s tokens, humbly, happen to be SafeNet’s MobilePASS and eToken PASS ). Others in the League use similar methods, be they ‘hard’ or ‘soft’ tokens.
When protecting a broad campus population, such as students or staff, on top of privileged IT users, different deployment considerations come into play. Students especially are a transient user group, with new arrivals gaining portal access each year, and graduates leaving their privileges behind. This is where software-based tokens and workflow-automation facilitate the colossal task of provisioning, enrolling, managing and revoking tens of thousands of tokens, and where self-service portals not only come in handy, but become essential. And with an increasing number of institutions offering online-only programs, online authentication turns critical.
SafeNet’s Next Generation Authentication offering makes strong authentication for large populations simple and scalable through automation and a variety of software tokens including OOB, phone-based, and desktop based authenticators.
To learn more, download the Next Generation Authentication white paper.
Mor AhuviaFebruary 26, 2014, 12:15 pm EDT
Taking trust-in-the-cloud to a higher strata, SafeNet’s cloud-delivered authentication offering, SafeNet Authentication Service, has been granted the ISO 27001:2005 Certification, thereby achieving the highest attainable credibility ranking for information security management.
This is exciting news for SafeNet and its as-a-service authentication offering as ISO 27001:2005 is an internationally recognized security standard that inspires confidence in IT and infosec professionals seeking to move resources to the cloud without compromising security.
As noted in SafeNet’s recent infographic based on a global survey on data center consolidation, 74% of IT and security professionals see compliance and data protection as core must-haves when sourcing cloud solutions.
“The adoption of new technologies – such as big data, mobility and cloud-based services – has pushed data center consolidation to the top of the priority list for many businesses. Yet it is clear that security concerns combined with a lack of resources are hampering the progress of such transformations,” said Prakash Panjwani, Senior VP and General Manager of SafeNet, with respect to the survey. The ISO 27001 certification brings trust to the cloud computing equation, allowing cloud computing efficiencies and convenience without sacrificing data integrity and protection.
ISO 27001 was established by the International Standards Organization for ensuring the confidentiality, integrity and availability of information assets owned by an organization. Central to its implementation is the identification of information assets, potential threats and risks to those assets, and the implementation of appropriate controls to reduce asset-related risks.
The value of accreditations such as the ISO 27001 standard lies in the fact that they are granted by independent third party audit companies, pursuant to in-depth audits conducted on premises at the applying organization. These types of assessments provide transparency and accountability, and ensure that SafeNet is implementing globally-recognized best practice measures to guarantee that it offers the best quality products and services. In SafeNet’s case, leading certification firm UL-DQS Inc. performed the audit, visiting the sites in Ottawa and Belcamp to assess their adherence to the ISO 27001 standard.
The ISO 27001 certification is just one facet of SafeNet’s broader Next Generation Authentication offering, whose cornerstones include a Trusted Authentication Environment based on industry-recognized standards, as well as ensuring that our products and services meet globally recognized security standards such as FIPS, Common Criteria, and now also ISO 27001:2005.
For more information on SafeNet Authentication Service, see our Profiting from SafeNet Authentication Service Offerings white paper.
Jennifer LewisFebruary 26, 2014, 09:39 am EDT
With a little over a year under her belt at SafeNet, VP of Channel Sales Laurie Usewicz has been hard at work revolutionizing the SafeNet Channel Partner Program. She’s also recently gained recognition for the 5th consecutive year as a CRN Channel Chief. As a follow up to an interview with Laurie in early 2013 not long after joining the SafeNet team, I was interested to hear Laurie’s insight into why the channel market is exploding, how SafeNet is growing to meet these challenges, and what’s next for SafeNet’s channel program in 2014 and beyond.
Channel leverage & utilization has continued to be a hot sales growth strategy for so many global companies. What trends are you seeing today that are changing the game and taking this tactic into a new direction?
Data breaches are so prevalent in today’s market, and SafeNet is uniquely positioned with a market demand that commands leveraging the channel to seize the market opportunity. The channel brings a unique and valuable perspective to the data protection opportunity since many are also delivering the infrastructure where data resides such as storage and virtualized environments. The channel is an integral piece of SafeNet’s success!
It didn’t take long for you to start showing a positive impact on SafeNet Channel performance, but as the channel landscape continues to grow, how is SafeNet adapting?
SafeNet’s complete portfolio is attracting the next generation of solution providers. The reality of the market today from a CIO perspective is that a security breach will occur (it’s no longer “if”.) SafeNet solutions protect the critical data when the breach occurs, regardless of where the data resides. In addition, SafeNet has made great progress in delivering our data protection solutions in the cloud which furthers the excitement from the next generation partner community.
What are the core areas you’re focusing on for the SafeNet Channel Partner Program in 2014, and where do you see the program heading from there?
In 2013, SafeNet demonstrated its commitment to the channel by tripling the size of the channel team. 2014 is another exciting year for SafeNet as demonstration of our channel commitment is emphasized in the redesign of our channel program. We are revamping our channel program to ensure it is aligned to our partners needs and affords great profitability for the value they are delivering. Look out for more details on the launch of SafeNet’s Cipher Partner Program!!
There are plenty of reasons to visit Las Vegas. Next week, IBM Pulse is at the top of our list. If you’ll be at this event, be sure to stop by the SafeNet booth, #E135.
We’ll be giving away a Parrot AR Drone in the booth, demoing SafeNet Authentication Service, and showcasing the many authentication, HSM, and storage integrations we have with ISAM, WebSphere, N Series and other IBM products!
And make it a point to attend Pulse Session 2331: Enhance Your Identity and Access Management Solution with Integrations from Key IBM Technology Partners. At 12:15 PM on Tuesday, February 25 in Pulse Room 111, SafeNet’s own Jeff Hooper will be co-presenting with IBM and other partners. Jeff’s topic? The IBM RfISI-verified solutions of SafeNet authentication and ISAM!
Hope to see you in fabulous Las Vegas.
Prakash Panjwani March 10, 2014, 10:21 am UTC
Mor Ahuvia March 6, 2014, 02:23 pm UTC
Mor Ahuvia February 26, 2014, 12:15 pm UTC
Jennifer Lewis February 26, 2014, 09:39 am UTC