Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

5/18/2021
05:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ThycoticCentrify Announces New Solution to Govern and Manage Privileged Access to Cloud Platforms

Santa Clara, Calif. and Washington D.C. ― May 18, 2021 ― ThycoticCentrify, a leading provider of cloud identity security solutions formed by the merger of privileged access management (PAM) leaders Thycotic and Centrify, today unveiled its cloud provider solution to centrally manage AWS billing accounts, identity and access management (IAM) accounts, and AWS EC2 instances in real-time.

Organizations are rapidly moving in-house applications to the cloud, often taking a “lift and shift” approach to migrate virtual machines (VMs) and applications to their preferred cloud provider. In doing so, they often create several different AWS Accounts for each application project or department where each AWS Account has its own root/billing account, IAM user accounts and service accounts, as well as those of the virtual machines (VMs) created to support the application. It’s difficult to manage AWS root/billing account credentials since any changes must be assisted by a human, and AWS best practice is to configure multi-factor authentication (MFA) for the account driven by AWS service enforcement. While automation tooling may integrate new AWS EC2 instances into a PAM solution, operations, staff, and auditors need a way to ensure and validate that all hosted VMs are accounted for and properly secured.

ThycoticCentrify’s cloud provider solution for AWS addresses these challenges by extending a set of existing PAM capabilities to automate continuous discovery of all AWS EC2 instances, providing full visibility of instances even in elastic auto-scaling groups. AWS root/billing accounts are vaulted for emergency access only, and interactive access to AWS Accounts via the AWS Management Console, AWS CLI, SDKs, and APIs is strictly controlled. AWS IAM accounts and associated Access Keys are eliminated or vaulted to reduce the attack surface, with SAML-based federated single sign-on providing a more secure and lower-maintenance alternative. Continuous EC2 discovery and post-discovery automations ensure complete and accurate visibility and that EC2 instances and their privileged accounts are immediately secured and brought under centralized management.

“The cloud is a game changer when it comes to scalability and availability, but it has also changed the game for cyber-attackers looking to leverage new vulnerabilities created by disparate controls and resulting identity management challenges,” said David McNeely, chief technology officer at ThycoticCentrify. “Our cloud provider solution for AWS provides real-time visibility into cloud workloads as they are added and removed, automating privileged password and identity management that ensures administrative and access controls are enforced while reducing complexity and risk.”

The foundation of ThycoticCentrify’s cloud provider solution is a cloud-native “hub-and-spoke” architecture centered around the Centrify Platform and lightweight Centrify Gateway Connectors that enroll cloud workloads into the Centrify Platform. The solution can also auto-deploy Centrify Clients on discovered Windows and Linux instances for fine-grained access control, auditing, and visual session recording, as well as enabling password-less login leveraging ephemeral certificates from the Centrify Platform via “Use My Account.”

ThycoticCentrify’s cloud provider solution is initially available for AWS, and will soon be extended to Microsoft Azure and other cloud provider platforms. For more information about ThycoticCentrify’s cloud provider solution for AWS visit https://www.centrify.com/resources/solution-briefs/aws/.

About ThycoticCentrify
ThycoticCentrify is a leading cloud identity security vendor, enabling digital transformation at scale. ThycoticCentrify’s industry-leading privileged access management (PAM) solutions reduce risk, complexity, and cost while securing organizations’ data, devices, and code across cloud, on-premises, and hybrid environments. ThycoticCentrify is trusted by over 14,000 leading organizations around the globe including over half of the Fortune 100, and customers include the world’s largest financial institutions, intelligence agencies, and critical infrastructure companies.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Commentary
What the FedEx Logo Taught Me About Cybersecurity
Matt Shea, Head of Federal @ MixMode,  6/4/2021
Edge-DRsplash-10-edge-articles
A View From Inside a Deception
Sara Peters, Senior Editor at Dark Reading,  6/2/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-34682
PUBLISHED: 2021-06-12
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
CVE-2021-31811
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-31812
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-32552
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package apport hooks, it could expose private data to other local users.
CVE-2021-32553
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-17 package apport hooks, it could expose private data to other local users.