Analytics
6/14/2013
02:02 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Lieberman Software Launches First Security-As-A-Service PIM Platform

ERPM’s newest version offers two interfaces that provide a programmatic option for identity management

(Los Angeles, CA and Washington DC – June 10, 2013) As the IT infrastructures for today's large Cloud Service Providers, Managed Service Providers and Internet Service Providers expand beyond hundreds of thousands of systems, the ability to manage and secure these dynamic environments grows increasingly complex. In response to this market development, Lieberman Software Corporation announced a major upgrade to Enterprise Random Password Manager&trade (ERPM), the company's flagship Privileged Identity Management (PIM) product, designed as the industry's first Security-as-a-Service PIM platform.

In its new evolution as a service platform, ERPM now provides full automation and programmatic orchestration of privileged credentials, certificates, pin codes, passcodes and other sensitive data generated on a massive scale by large multi-tenant organizations. With ERPM, the discovery, auditing and access control of credentials and certificates in the world's largest enterprises and service providers can now be managed entirely by machines, rather than through direct human interaction.

"Our philosophy has always been that automation is the only way to take control over the powerful privileged identities widespread throughout modern IT environments," said Philip Lieberman, President and CEO of Lieberman Software. "Only by deploying automated security solutions can organizations locate and remediate weaknesses faster than nation-state attackers and other criminal hackers can exploit them.

"The challenge is in managing and securing these identities at massive scale. When gas meters, water meters, cable boxes, desktop boxes, cell phones, routers and more are all taken into account, the number of systems that need to be managed can extend into the millions. A truly secure environment requires all identities on all devices to be discovered and managed. To that end, we've developed ERPM as a solution that can automatically manage the entire privileged identity and certificate management lifecycle - from the auto-discovery of each privileged account to the propagation of password changes throughout the enterprise - without manual involvement."

To accomplish this, ERPM's newest version offers two interfaces – with Windows PowerShell® and SOAP web services – that provide a programmatic option for identity management.

Lieberman Software has been an ISV since 1994 and originally developed the first tools for the privileged identity management market more than 10 years ago. ERPM was the first product capable of automatically locating all of the privileged accounts in large, dispersed enterprises, and then securing and tracking each of these accounts. Today, ERPM helps organizations in all major vertical markets worldwide prevent unauthorized users and malicious programs from gaining unrestricted and anonymous access to systems with highly sensitive data. All of ERPM's previous capabilities remain in the new version of the product.

Lieberman Software is exhibiting this new ERPM functionality in booth 5 at the Gartner Security and Risk Management Summit in National Harbor, MD this week.

For more information see http://www.liebsoft.com/ERPM_Programmatic_Access/

About Lieberman Software Corporation

Lieberman Software provides privileged identity management and security management products to more than 1000 customers worldwide, including nearly half of the Fortune 50. By automatically discovering and managing privileged accounts throughout the network, Lieberman Software helps secure access to sensitive data, thereby reducing internal and external security vulnerabilities, improving IT productivity and helping ensure regulatory compliance. The company developed the first solution for the privileged account management space, and its products continue to lead the market. Lieberman Software is headquartered in Los Angeles, CA with an office in Austin, TX and channel partners throughout the world. For more information, visit www.liebsoft.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Latest Comment: nice post
Current Issue
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-1750
Published: 2015-07-01
Open redirect vulnerability in nokia-mapsplaces.php in the Nokia Maps & Places plugin 1.6.6 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the href parameter to page/place.html. NOTE: this was originally reported as cross-sit...

CVE-2014-1836
Published: 2015-07-01
Absolute path traversal vulnerability in htdocs/libraries/image-editor/image-edit.php in ImpressCMS before 1.3.6 allows remote attackers to delete arbitrary files via a full pathname in the image_path parameter in a cancel action.

CVE-2015-0848
Published: 2015-07-01
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.

CVE-2015-1330
Published: 2015-07-01
unattended-upgrades before 0.86.1 does not properly authenticate packages when the (1) force-confold or (2) force-confnew dpkg options are enabled in the DPkg::Options::* apt configuration, which allows remote man-in-the-middle attackers to upload and execute arbitrary packages via unspecified vecto...

CVE-2015-1950
Published: 2015-07-01
IBM PowerVC Standard Edition 1.2.2.1 through 1.2.2.2 does not require authentication for access to the Python interpreter with nova credentials, which allows KVM guest OS users to discover certain PowerVC credentials and bypass intended access restrictions via unspecified Python code.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report