Blogs

    Publish
     
      • Information protection everywhere begins with Symantec Identity: Access Manager (SAM)

        Feb 02 2015, 8:44 AM

        by Teresa Law 0

        So information protection everywhere begins with Symantec Identity: Access Manager (SAM)?  But what is information protection everywhere?

        • It’s prevention - scanning on-premise and in cloud apps to find sensitive files that should be secured
        • It’s user friendly protection – securing identities and access with simple, smart, and secure strong authentication; and protecting data in the enterprise or the cloud, at rest and in transit
        • It’s fast detection and rapid remediation – quickly identifying suspicious or risky behavior and automating responses
        • It’s about standards so integration with vendors' products is easy
        • And it begins with SAM

        Access Manager (SAM) is the platform on which Symantec’s information protection solution will be built.  A comprehensive information protection solution that not only includes identity and access protection, but also information management, and a way to intelligently correlate unusual behavior or events identified by both.  Access Manager acts as the single access point for all cloud apps and services to ensure secure access and data integrity; similar to a Control Access Security Broker (CASB) or Cloud Access Control. 

        But why does Symantec’s information protection start with Access Manager? The single access point provided by Access Manager is necessary, not just to help ensure that legitimate users are the only ones to gain access to sensitive corporate data, but also to identify users if there is a need to take action - enabling rapid response.  Identity provides the best means to correlate disparate events and Access Manager provides the unified identity.

        The introduction of Access Manager is just the beginning of information protection everywhere. Read more about Access Manager http://bit.ly/1H8H33G or visit the Access Manager website

        • 2FA
        • Products
        • Identity Access Manager
        • #SSO
        • Single Sign-on
        • Identity and Authentication Services
        • Access Control
        • VIP (Validation ID Protection)
        • Products and Solutions
        • Managed PKI for SSL
      • VIP Push now available with Symantec Identity: Access Manager

        Oct 20 2017, 9:06 PM

        by Teresa Law 2

        Symantec Identity: Access Manager (SAM) now supports VIP Push and will soon support VIP Login.

        VIP Push

        When we introduced VIP Access Push we told you how much more convenient it is – you automatically receive a Push verification to your registered mobile device upon sign-in, replacing the need for you to manually enter a security code – it’s just a push of a button.  We’ve now taken it one step further and made it available as the login method for SAM.   When combined with the SAM Single Sign-On portal you can now login to ALL your applications in a secure yet user friendly manner.

        VIP Push with SAM2_0_0.jpg

        VIP Access Push uses a challenge-response authentication technique and a 2048-bit asymmetric key to securely and uniquely identify the device and help protect against a security breach. You are notified on your device each time there is a login attempt and have the option to deny any request.  In the event that a mobile device is offline, you will have the option to use the six-digit security code from the same VIP Access app to authenticate. The VIP Access Push feature is supported on iOS and Android platforms.

        VIP Login

        As you can see from the SAM login portal we also offer login using Symantec Managed PKI and are getting ready to support VIP Login.  VIP Login replaces the cumbersome password with a  PIN defined by you.  Passwords get reused and can be difficult to remember, while a PIN is much simpler to remember and is generally not reused – think of your ATM card.

        VIP Login with SAM3.jpg

        Find out more about Symantec Identity Access Manager now visit the website.

        Follow us on Twitter: @SymantecSAM, @SymantecVIP,  or @SymantecMPKI

        • 2FA
        • Products
        • symantec vip
        • SAM
        • #SSO
        • Products and Solutions
        • VIP
        • Managed PKI for SSL
      • To protect your enterpise, protect your vendors

        Nov 10 2014, 10:04 PM

        by Teresa Law 2

        We talk a great deal about using strong authentication to secure access for enterprise employees, but often we don’t think about how breaches to vendors could make our own enterprise vulnerable.  In some cases all an attacker needs is to steal the username and password from a vendor to begin their attack on your enterprise.  That is exactly what happened to Home Depot; and it is an excellent example of why not only you, but also your outside vendors should be using strong authentication like Symantec VIP – Home Depot hackers exposed 53 million email addresses.  This kind of breach not only damages customer trust but also Home Depot estimates that the theft would cost about $62 million.

        “According to Home Depot, the attackers stole login credentials from an outside vendor and used this information to infiltrate Home Depot’s systems. They could then move from a peripheral third-party vendor system to the company’s main computer network by exploiting a Windows vulnerability. Microsoft released a patch for this bug after the breach began, but while Home Depot applied the patch when it was released, it was too late. The attackers could then move to more Home Depot computers, eventually reaching 7,500 of the company’s POS terminals at self-checkout lanes. However, the attackers may have missed 70,000 of the retailer’s standard cash registers as these terminals were only identified by numbers.

        The attackers moved through Home Depot’s network during regular business hours and used malware that stole data, transmitted details to a remote location, and deleted its traces. According to the investigation, the breach could have gone unnoticed for much longer if the attackers hadn’t put some of the stolen credit card details on sale while a number of Home Depot executives were on vacation for Labor Day. “

        The Symantec Internet Threat Report highlighted how attackers are using smaller businesses and the supply chain to attack larger entities - the Home Depot attack dramatically reinforces this finding.  Attackers are becoming more relentless, using multiple avenues to stage attacks.  Enterprises need to engage in a layered security approach to mitigate the risk.  A mandatory first step is ensuring that not only your enterprise but your vendors are securing access to their networks and applications.  Symantec VIP is a simple, smart, and secure way to easily add a second layer of protection to secure access.  A username and password may be compromised but a secure second factor will not.

        • Products
        • Identity and Authentication Services
        • VIP (Validation ID Protection)
        • Identity Access Manager
        • Products and Solutions
        • Managed PKI for SSL
      • Managed PKI Enhanced with Self-Service Portal!

        Jul 01 2014, 11:24 PM

        by Teresa Law 1

        Managed PKI Service 8.11 featuring a self-service portal, administrator enhancements, and updated platform support has been made generally available to customers.

        Feature Details

        Self-Service Portal

        Managed PKI 8.11 provides a Self Service Portal that allows your users to manage their own certificate lifecycle operations (such as viewing, enrolling for, renewing, and revoking certificates, and downloading root CAs).  The new self-service portal will not only improve the user experience, no more waiting for the Helpdesk to address their issue; but it also reduces the burden on IT.   Allowing users to address credential management themselves frees IT to address other strategic issues.  This feature is available to all customers who have Enterprise Gateway.

        Support for SHA2

        This release establishes SHA2 as the default signing algorithm for existing and new accounts to provide the strongest security available.

        Administrator Enhancements

        Additional enhancements have been made as we continually improve the user experience of the Administrator and privacy for users.  Enhancements include:

        • If the organization has privacy concerns this release allows the administrator to assign values other than email addresses to seats IDs for cloud Profiles, to uniquely identify users. 
        • Allow administrators to temporarily suspend and resume certificates via PKI Manager.  In this way, if a user forgets his/her smart card, the administrator can temporarily suspend the certificates for this user and then resume the certificates when the smart card is again available.
        • Introduction of a new tool to aid in the import of recoverable Managed PKI 7.x certificates to the Managed PKI 8.x Magnum platform makes migration even easier.

        As a cloud offering, all the new features in the Symantec Managed PKI Service are available instantly to existing customers at no additional charge. To learn more about Symantec Managed PKI Service, please visit the website or take Managed PKI for a spin with our free trial.

        Follow us on Twitter: @SymantecMPKI

        • 2FA
        • Products
        • Identity and Authentication Services
        • Products and Solutions
        • Managed PKI for SSL