02:02 PM
Dark Reading
Dark Reading
Products and Releases

Lieberman Software Launches First Security-As-A-Service PIM Platform

ERPM’s newest version offers two interfaces that provide a programmatic option for identity management

(Los Angeles, CA and Washington DC – June 10, 2013) As the IT infrastructures for today's large Cloud Service Providers, Managed Service Providers and Internet Service Providers expand beyond hundreds of thousands of systems, the ability to manage and secure these dynamic environments grows increasingly complex. In response to this market development, Lieberman Software Corporation announced a major upgrade to Enterprise Random Password Manager&trade (ERPM), the company's flagship Privileged Identity Management (PIM) product, designed as the industry's first Security-as-a-Service PIM platform.

In its new evolution as a service platform, ERPM now provides full automation and programmatic orchestration of privileged credentials, certificates, pin codes, passcodes and other sensitive data generated on a massive scale by large multi-tenant organizations. With ERPM, the discovery, auditing and access control of credentials and certificates in the world's largest enterprises and service providers can now be managed entirely by machines, rather than through direct human interaction.

"Our philosophy has always been that automation is the only way to take control over the powerful privileged identities widespread throughout modern IT environments," said Philip Lieberman, President and CEO of Lieberman Software. "Only by deploying automated security solutions can organizations locate and remediate weaknesses faster than nation-state attackers and other criminal hackers can exploit them.

"The challenge is in managing and securing these identities at massive scale. When gas meters, water meters, cable boxes, desktop boxes, cell phones, routers and more are all taken into account, the number of systems that need to be managed can extend into the millions. A truly secure environment requires all identities on all devices to be discovered and managed. To that end, we've developed ERPM as a solution that can automatically manage the entire privileged identity and certificate management lifecycle - from the auto-discovery of each privileged account to the propagation of password changes throughout the enterprise - without manual involvement."

To accomplish this, ERPM's newest version offers two interfaces – with Windows PowerShell® and SOAP web services – that provide a programmatic option for identity management.

Lieberman Software has been an ISV since 1994 and originally developed the first tools for the privileged identity management market more than 10 years ago. ERPM was the first product capable of automatically locating all of the privileged accounts in large, dispersed enterprises, and then securing and tracking each of these accounts. Today, ERPM helps organizations in all major vertical markets worldwide prevent unauthorized users and malicious programs from gaining unrestricted and anonymous access to systems with highly sensitive data. All of ERPM's previous capabilities remain in the new version of the product.

Lieberman Software is exhibiting this new ERPM functionality in booth 5 at the Gartner Security and Risk Management Summit in National Harbor, MD this week.

For more information see

About Lieberman Software Corporation

Lieberman Software provides privileged identity management and security management products to more than 1000 customers worldwide, including nearly half of the Fortune 50. By automatically discovering and managing privileged accounts throughout the network, Lieberman Software helps secure access to sensitive data, thereby reducing internal and external security vulnerabilities, improving IT productivity and helping ensure regulatory compliance. The company developed the first solution for the privileged account management space, and its products continue to lead the market. Lieberman Software is headquartered in Los Angeles, CA with an office in Austin, TX and channel partners throughout the world. For more information, visit

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Current Issue
Dark Reading Tech Digest September 7, 2015
Some security flaws go beyond simple app vulnerabilities. Have you checked for these?
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2015-10-09
Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (aka Forbidden) response.

Published: 2015-10-09
The Telephony component in Apple OS X before 10.11, when the Continuity feature is enabled, allows local users to bypass intended telephone-call restrictions via unspecified vectors.

Published: 2015-10-09
IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.

Published: 2015-10-09
IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly determine the origin of unsigned applets, which allows remote attackers to bypass the approval process or trick users into approving applet execution via a crafted web page.

Published: 2015-10-09
The Safari Extensions implementation in Apple Safari before 9 does not require user confirmation before replacing an installed extension, which has unspecified impact and attack vectors.

Dark Reading Radio
Archived Dark Reading Radio
What can the information security industry do to solve the IoT security problem? Learn more and join the conversation on the next episode of Dark Reading Radio.