Analytics
6/14/2013
02:02 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Lieberman Software Launches First Security-As-A-Service PIM Platform

ERPM’s newest version offers two interfaces that provide a programmatic option for identity management

(Los Angeles, CA and Washington DC – June 10, 2013) As the IT infrastructures for today's large Cloud Service Providers, Managed Service Providers and Internet Service Providers expand beyond hundreds of thousands of systems, the ability to manage and secure these dynamic environments grows increasingly complex. In response to this market development, Lieberman Software Corporation announced a major upgrade to Enterprise Random Password Manager&trade (ERPM), the company's flagship Privileged Identity Management (PIM) product, designed as the industry's first Security-as-a-Service PIM platform.

In its new evolution as a service platform, ERPM now provides full automation and programmatic orchestration of privileged credentials, certificates, pin codes, passcodes and other sensitive data generated on a massive scale by large multi-tenant organizations. With ERPM, the discovery, auditing and access control of credentials and certificates in the world's largest enterprises and service providers can now be managed entirely by machines, rather than through direct human interaction.

"Our philosophy has always been that automation is the only way to take control over the powerful privileged identities widespread throughout modern IT environments," said Philip Lieberman, President and CEO of Lieberman Software. "Only by deploying automated security solutions can organizations locate and remediate weaknesses faster than nation-state attackers and other criminal hackers can exploit them.

"The challenge is in managing and securing these identities at massive scale. When gas meters, water meters, cable boxes, desktop boxes, cell phones, routers and more are all taken into account, the number of systems that need to be managed can extend into the millions. A truly secure environment requires all identities on all devices to be discovered and managed. To that end, we've developed ERPM as a solution that can automatically manage the entire privileged identity and certificate management lifecycle - from the auto-discovery of each privileged account to the propagation of password changes throughout the enterprise - without manual involvement."

To accomplish this, ERPM's newest version offers two interfaces – with Windows PowerShell® and SOAP web services – that provide a programmatic option for identity management.

Lieberman Software has been an ISV since 1994 and originally developed the first tools for the privileged identity management market more than 10 years ago. ERPM was the first product capable of automatically locating all of the privileged accounts in large, dispersed enterprises, and then securing and tracking each of these accounts. Today, ERPM helps organizations in all major vertical markets worldwide prevent unauthorized users and malicious programs from gaining unrestricted and anonymous access to systems with highly sensitive data. All of ERPM's previous capabilities remain in the new version of the product.

Lieberman Software is exhibiting this new ERPM functionality in booth 5 at the Gartner Security and Risk Management Summit in National Harbor, MD this week.

For more information see http://www.liebsoft.com/ERPM_Programmatic_Access/

About Lieberman Software Corporation

Lieberman Software provides privileged identity management and security management products to more than 1000 customers worldwide, including nearly half of the Fortune 50. By automatically discovering and managing privileged accounts throughout the network, Lieberman Software helps secure access to sensitive data, thereby reducing internal and external security vulnerabilities, improving IT productivity and helping ensure regulatory compliance. The company developed the first solution for the privileged account management space, and its products continue to lead the market. Lieberman Software is headquartered in Los Angeles, CA with an office in Austin, TX and channel partners throughout the world. For more information, visit www.liebsoft.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-5211
Published: 2015-01-27
Stack-based buffer overflow in the Attachmate Reflection FTP Client before 14.1.433 allows remote FTP servers to execute arbitrary code via a large PWD response.

CVE-2014-8154
Published: 2015-01-27
The Gst.MapInfo function in Vala 0.26.0 and 0.26.1 uses an incorrect buffer length declaration for the Gstreamer bindings, which allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors, which trigger a heap-based buffer overf...

CVE-2014-9197
Published: 2015-01-27
The Schneider Electric ETG3000 FactoryCast HMI Gateway with firmware before 1.60 IR 04 stores rde.jar under the web root with insufficient access control, which allows remote attackers to obtain sensitive setup and configuration information via a direct request.

CVE-2014-9198
Published: 2015-01-27
The FTP server on the Schneider Electric ETG3000 FactoryCast HMI Gateway with firmware through 1.60 IR 04 has hardcoded credentials, which makes it easier for remote attackers to obtain access via an FTP session.

CVE-2014-9646
Published: 2015-01-27
Unquoted Windows search path vulnerability in the GoogleChromeDistribution::DoPostUninstallOperations function in installer/util/google_chrome_distribution.cc in the uninstall-survey feature in Google Chrome before 40.0.2214.91 allows local users to gain privileges via a Trojan horse program in the ...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
If you’re a security professional, you’ve probably been asked many questions about the December attack on Sony. On Jan. 21 at 1pm eastern, you can join a special, one-hour Dark Reading Radio discussion devoted to the Sony hack and the issues that may arise from it.