|
|
SafeNet - 5/7/2013
Three-Quarters of Software Publishers Will Head to the Cloud in Search of New Revenue
Software monetization market leader SafeNet, Inc. and the Software & Information Industry Association (SIIA) today released additional results of a joint survey
of more than 600 software developers and 200 enterprise software end users, revealing current trends, adoption rates and drivers of cloud-based software
delivery.
Key Findings:
· Three-quarters of software publishers plan to be in the cloud by the end of 2013; hybrid models expected to dominate through 2017
· More than half of software publishers expect operating costs to decline once in the cloud; 25 percent still cite cost and complexity as the biggest barriers
to entry
· Thirty-five percent of enterprise end users cite inflexible licensing as the top software consumption headache; close to half of software publishers expect
to improve end-user experience with cloud
Cloud Adoption Trends
Today, 65 percent of software publishers report offering all or a portion of their portfolios as a cloud service, and on average, cloud services comprise 24 percent
of a typical company’s software portfolio. Though approximately one-third of software publishers have yet to offer cloud-based services, 75 percent of the
respondents have plans to offer at least some of their product portfolios as a service in the next year. Of those with mixed portfolios (i.e., both cloud and non-
cloud offerings), the percentage of cloud offerings is expected to remain steady at 25 percent. During the next five years, the survey indicates that the cloud will
continue to grow as a percentage of overall portfolios for publishers, even though the number of publishers with no cloud presence will remain steady at 25
percent.
“Cloud-based software delivery is attractive to software publishers and end users alike, most often because of the promise of increased transparency, more
flexible business models and perceived operational simplicity,” said Michelle Nerlinger, Vice President at SafeNet. “The ability to reap these benefits is strongly
dependent on a software publisher’s ability to effectively track, control and manage their applications in an automated and operationally effective manner. This
means that the implementation of effective licensing and entitlement management techniques will be key to achieving software monetization success in the
cloud. For transitioning or hybrid software publishers, a platform capable of managing on-premise and cloud applications in tandem will be absolutely critical.”
Understanding Publisher and End-User Adoption Drivers
The most common driver for software publishers to offer cloud-based services is to reduce the operational costs associated with product delivery, activation and
support (cited by 62 percent of respondents). Additional motives include improving customer experience by “reducing end-user headaches” (46 percent); the
ability to access new and niche markets (48 percent); improved usage tracking (33 percent); and faster time to market (32 percent).
Sixty-one percent of software publishers that have already adopted a cloud-based software delivery approach confirm the validity of these expectations by
reporting a positive financial impact, due to reduced operations costs or increased revenue. Reinforcing that, only six percent of respondents reported a
negative financial impact or security threat once introducing cloud-based software delivery.
Software publishers are not alone in their desire for the flexibility and transparency promised by cloud-based software delivery. Thirty-five percent of enterprise
end users reported inflexible licenses that don’t meet organizational needs as the number one headache related to software consumption. In addition, 14
percent of enterprise end users cited cloud-based services as their top software licensing model preference, and 16 percent specifically identified a metered
billing method as their preferred pricing model.
“At the SIIA, we’re watching with great interest how cloud-based software delivery has changed and continues to change over time,” said Rhianna Collier, Vice
President of the SIIA’s Software Division. “We’re expecting to see a rise in the adoption of software-as-a-service as developers and users alike look to take
advantage of the benefits that the cloud can offer.”
Obstacles to Adoption
More than half (55 percent) of software developers do not see their organizations as “cloud-ready,” with security concerns about data in the cloud (36 percent),
and the perceived cost and complexity of the transition from on-premise (25 percent) being cited as the biggest obstacles to true cloud readiness. On average,
respondents said it would take 16 months to make all or a portion of their product portfolio cloud-ready; however, 26 percent of respondents believed that they
could never move their offerings to the cloud.
softwaremag.com
SafeNet - 4/24/2013
SafeNet Brings Software Monetization to Android-powered Devices
Software monetization leader, SafeNet, Inc., announced the first and only software licensing solution for Android-powered devices, Sentinel RMS Embedded.
With SafeNet’s technology, software publishers and device vendors will now be able to easily package, control, track usage of, and manage applications
deployed on any Android-powered device, handset, or tablet as part of a comprehensive software monetization strategy.
Sentinel RMS Embedded is a low-footprint, highly portable version of Sentinel RMS, SafeNet’s industry-proven software licensing toolkit. Sentinel RMS
Embedded is designed specifically for the memory-constrained environments commonly associated with mobile devices and handsets, and it delivers out-of-the-
box support for the Android operating system (OS), making it the ideal choice for mobile software monetization. Paired with Sentinel EMS, the company’s
entitlement management solution, Sentinel RMS Embedded enables software publishers and device manufacturers to flexibly protect, price, package, and
mange software deployed on Android-enabled devices in order to maximize revenue, reduce operating costs, and improve customer experience.
“Delivering a best-in-class device is no longer just about size, shape, and performance; it’s about providing an experience, and bundled software is an
increasingly important aspect of that experience,” said Mr. Youngsup Kim, principal engineer at Samsung Electronics. “As hardware value is increasingly driven
by value-added software, the ability to protect, control access to, and track the usage of that software is paramount to maximizing revenue and profitability.
SafeNet is the only software monetization solution vendor positioned to help the mobile industry with this challenge.”
Sentinel RMS Embedded provides application vendors with a means to extend their enterprise applications to the Android platform, enabling them to monetize
their application in mobile environments. Use of Sentinel EMS enables vendors to easily provision and manage licensing across all their platforms.
“End-user demand for access to high-value content and applications from mobile devices, such as smart phones and tablets, has reached an all-time high,” said
Michelle Nerlinger, vice president of Marketing, SafeNet. “In order to capitalize on this growing demand, mobile device manufacturers and application
developers need a way to effectively provision, control, and manage applications deployed within mobile environments without compromising security, user
experience, or insight. Software licensing and entitlement management technology will provide vendors with the tools they need to do just that and SafeNet is
thrilled to help solve this challenge for the Android platform.”
SafeNet offers Sentinel Software Monetization Solutions tailored specifically to protect and manage software embedded within any piece of hardware—from
networking appliances and medical devices to mobile handsets and industrial automation equipment. These offerings provide device and equipment
manufacturers with all the tools they need to effectively protect their products from tampering and reverse engineering, while also opening up an entirely new
world of software packaging and opportunities to maximize profitability.
Sentinel Embedded Software Monetization Features:
Award-winning Security – License enforcement and IP protection to ensure device and brand integrity, mitigating reverse engineering and safeguarding revenue.
Product Configuration Management – Multiple software pricing and packaging options from one primary code build to reduce inventory costs and simplify
operational processes.
Flexible Business Models – The industry’s widest variety of flexible licensing models and enforcement mechanisms, enabling device and equipment
manufacturers to meet the packaging demands of every customer, every time.
Remote Feature Management – Remote software upgrades and feature-level access control to simplify customer lifecycle management.
Centralized Management and Process Automation – Integration with the company’s Web-based entitlement management solution, Sentinel EMS, providing
centralized and automated product activation, usage tracking, and ongoing end-user entitlement management.
Embedded-focused Design – Reduced footprint and efficient memory use meet strict embedded environment constraints without compromising device
performance.
High Portability - Out-of-the-box support for a broad variety of platforms and operating systems and a design that supports quick and easy custom porting.
softwaremag.com
SafeNet - 4/24/2013
SafeNet Fuels the Transformation of the Intelligent Device Industry with New Embedded Software Monetization Solution
SafeNet, Inc., a leading provider of software monetization solutions, today announced Sentinel RMS Embedded, a small footprint, highly portable version of the
company’s industry-proven enterprise software licensing toolkit, Sentinel RMS. The solution is designed specifically to meet the challenges of memory-
constrained embedded environments. Sentinel RMS Embedded leverages feature-level control mechanisms and entitlement management techniques to enable
embedded systems vendors to protect, manage, and flexibly price and package the software powering their hardware in order to maximize revenue, reduce
operating costs, and improve customer experience.
Sentinel RMS Embedded allows device and equipment manufacturers to effectively enable new, more efficient business models through feature-level
packaging, control, software usage tracking, and ongoing entitlement management. This allows vendors to build incremental value and optimize revenues by
pricing and selling their base product separately from additional features. This capability also helps to lower operating costs by allowing vendors to decrease the
number of hardware SKUs they are required to support, ultimately lowering the cost and complexity of support, upgrades, and renewal processes.
In addition, full integration with Sentinel EMS, the company’s enterprise entitlement management system, provides device and equipment manufacturers with the
option to easily automate many of the laborious processes associated with customer lifecycle management—from product activation to ongoing use and upgrade
management—in order to further reduce operating costs and improve customer experience.
“Adoption of an effective embedded software monetization strategy will enable vendors of embedded systems to obtain the same licensing protection, flexibility,
and operational efficiency benefits that software vendors have realized for years,” said Michelle Nerlinger, vice president of marketing, SafeNet.
Unlike typical software, embedded systems often run on non-standard platforms, have very little spare memory, and have strict performance requirements.
Sentinel RMS Embedded is built with these challenges in mind.
Sentinel RMS Embedded Features:
Product Configuration Management – Enables the generation of multiple software pricing and packaging options from one primary code build to reduce inventory
costs and simplify operational processes.
Flexible Business Models – Provides the industry’s widest variety of flexible software licensing models and enforcement mechanisms to meet the packaging
demands of every customer every time.
Remote Feature Management – Allows vendors to remotely upgrade software and control feature-level access to simplify the entire customer lifecycle
management process.
Centralized Management and Process Automation – Enables centralization and automation of product activation, usage tracking, and ongoing end-user
entitlement management.
Designed for Embedded Systems – Reduced footprint and efficient memory use conform to the strictest of embedded environment constraints without
compromising device performance.
Highly Portable – Out-of-the-box support for a broad variety of platforms and operating systems supports quick and easy custom porting.
Embedded Software Monetization Resources
Embedded Software Monetization Quick Reference Guide
View a live demo of Embedded Software Monetization in action
Sentinel RMS Embedded Product Brief
SafeNet at Design West 2013
The SafeNet Embedded Software Monetization team will also be on site at Design West 2013 to answer questions and demonstrate the power of software
licensing and entitlement management when applied to an intelligent hardware device. The team will be utilizing a live racetrack to demonstrate how licensing
can be used to control hardware at the feature level—in this case Carrera Slot Cars—in order to improve customer lifecycle management, enhance packaging
capabilities, and reduce operating costs. The team will also be greeting visitors at its booth (#2331) with snacks and margaritas, offering the chance to win a
remote-controlled Porsche 911 and giving away gas cards.
softwaremag.com
SafeNet - 4/3/2013
SafeNet’s Third-Generation Sentinel Envelope Ensures Code Integrity and Delivers Superior Application Security
Software monetization leader, SafeNet, Inc. today announced the availability of its third-generation Sentinel Envelope technology, which helps software
developers protect code integrity, deliver strong application security, and, at the same time, reduce deployment delays and overhead costs.
As software publishers try to balance how best to prevent misuse of their software without creating unnecessary obstacles for legitimately paying customers,
Sentinel Envelope works with Sentinel LDK, the company’s out-of-the-box software protection, licensing, and entitlement management system, to help them
protect their software and intellectual property (IP) while minimizing disruption and maximizing profitability.
Sentinel Envelope achieves this by providing software developers with superior application protection, including an automatic file packer (i.e., wrapper) that
employs SafeNet’s advanced file encryption, code obfuscation, and anti-debugging technologies. The Sentinel Envelope also creates a robust shield that wraps
executable files and dynamically linked libraries (DLLs) and binds applications to hardware- or software-based protection keys, enabling customers to more
effectively enforce copy protection, protect trade secrets, professional know-how, and IP from reverse engineering, tampering, and piracy.
"Protecting hard-earned trade secrets and intellectual capital is critical for ISVs to remain competitive and relevant in the market,"" said Jake Fox, vice
president, product management, Software Monetization, SafeNet. “The third generation of LDK Envelope technology takes software protection to the next level.
LDK Envelope makes it extremely difficult for hackers to reverse engineer protected intellectual property. By implementing strong application security, software
vendors can confidently maintain their competitive advantage.”
The Sentinel Envelope introduces innovative new features for both its 32- and 64-bit engine, including import table gating, OEP (original entry point) obfuscation,
constant runtime debugging protection, improved real-time anti-debugging and anti-tracing capabilities, and what is believed to be the industry’s first and only file
packer utilizing a white-box-based secure channel that protects the secure channel encryption key from dynamic or static extraction from protected binaries. All
of the features in Sentinel Envelope combine to provide software vendors with enhanced copy protection and prevention of modification and tampering
The third-generation enhancements to the Sentinel Envelope include:
Enhanced security protection for 32- and 64-bit architectures— b locks the reconstruction of protected binaries from attacks based on memory dumping.
White-box-based secure communication channel— utilizes vendor-specific components to ensure that the secure channel encryption key cannot be dynamically
or statically extracted from the protected binaries. This is the first solution of its kind in the industry.
Import address table obfuscation and gating— removes the import address table (IAT) and scatters its information inside the Envelope code, including the original
entry point (OEP). Calls for imported system functions are also redirected via import gates for all known system DLLs.
Constant runtime-debugging protection— enhances user-mode debugger detection on running processes that hardens the software against tracing techniques
and confuses hackers with delayed responses, misleading commands, and false information.
User-mode software-based licenses— provides “user-mode” licenses that do not require installation of the runtime environment, enabling faster, easier, and lower
overhead installations, regardless of administrative rights.
These enhancements make Sentinel LDK’s Envelope technology one of the most secure application security solutions on the market today. They will enable
software vendors to more easily protect access and use of their applications, ensure product and brand integrity, combat competitive espionage, and safeguard
revenue streams.
"Rigorously protecting intellectual property from theft, reverse engineering, and tampering is critical for software vendors in today’s ultra-competitive
environment," continued Jake Fox. "Strong security is one of the cornerstones of an effective software monetization strategy, and the Sentinel LDK Envelope
delivers cutting-edge code encryption and counter-hacking techniques to protect valuable IP from persistent, intelligent threats."
softwaremag.com
SafeNet - 3/21/2013
SafeNet and SIIA Survey Reveals Where Software Publishers are Losing Up to 50% of Revenue
Software monetization leader, SafeNet, and the Software & Information Industry Association (SIIA) today released the results of a joint survey of more than 620
software developers and 194 enterprise software end users, revealing that developers continue to struggle with how to secure their critical intellectual property
(IP) without disrupting their business. As a result of not implementing the right licensing models and security as a foundational pillar of their business, software
developers are finding that they are losing revenue, seeing diminishing profitability and increasing the risk to their brand and overall reputation.
Participants cited inflexible licensing models, insufficient software protection, and inadequate operational procedures as the main impediments toward fully
monetizing their software, protecting their company’s most critical intellectual property and fully integrating software monetization into their business model.
Some of the highlights of the survey include:
· One out of two (53 percent) software publishers surveyed said they would have driven higher revenues for their software if they had more licensing
flexibility.
· Nearly one out of two (48 percent) software publisher respondents admitted that competitive IP theft had a significant impact on their business.
· In addition to licensing and piracy issues, nearly one out of two (46 percent) software publishers now report that dysfunction in their back offices has had
a significant impact on their business, with nearly two out of three (60 percent) admitting that they struggle with back-office licensing processes.
“These survey results highlight the tremendous need for a change in how software developers approach and execute their software monetization strategies,”
said SafeNet Senior Vice President Prakash Panjwani. “Developers need solutions that address the four key elements of software monetization—effective
packaging, access and compliance control, back-office automation and management, and usage monitoring. By adopting a comprehensive approach to
software monetization, organizations can not only protect their critical IP from piracy and reverse-engineering, but help drive revenue and profitability as well.”
Tipping Point for Licensing Models
More than half (53 percent) of software publishers surveyed said they lost revenue opportunities due to the limited flexibility of licensing models, which negatively
impacted their business. In addition, 61 percent of publishers admit that they struggle with the ability to price and package their applications at the feature level.
Almost half (49 percent) of respondents admit that re-packaging offerings without engineering involvement is a challenge, and that they struggle to support the
license models their customers are demanding. Given the issues faced by software providers, it is not surprising that inflexible licenses were cited as the biggest
software licensing headache by more than a third (35 percent) of end-user respondents.
Revenue and Brand Reputation Increasingly at Risk
Beyond licensing flexibility problems, nearly half of all respondents also reported that lack of control over their software was a major contributor to revenue
loss—48 percent of software publisher respondents thought that competitive IP theft had a significant impact on their business, and 42 percent thought that lost
revenue due to software piracy had a significant impact. This result is not unexpected, considering that 70 percent of respondents reported challenges with
piracy prevention, 63 percent reported challenges with reverse-engineering protection, and 51 percent reported challenges with code-tampering prevention.
The responses from software end users justify concerns about the business impact of software misuse—more than 60 percent report having some unlicensed
software in use within their organization last year. This behavior seems to be reinforced by software publishers; while 74 percent worry that their software may
become compromised, only 58 percent employ license compliance enforcement mechanisms and only 46 percent employ IP protection tools.
Back-Office Dysfunction Leading to Operational Inefficiencies and Revenue Loss
In the past, when the software industry discussed revenue leakage, the focus was on piracy. As the industry has progressed, software publishers increasingly
recognize other revenue barriers. Forty-six percent of software publishers now report that dysfunction in their back offices has had a significant impact on their
business. This is consistent with the finding that nearly 60 percent also admitted they struggle with back-office licensing processes, and only 31 percent of
respondents said they have integrated entitlement management processes. More than half of publishers said they face the following operational
management generation, delivery, and/or activation (55 percent); end-user support and/or self-service (54 percent), and end-user provisioning (50 percent). End
users are also feeling the back-office pain; nearly one-third (32 percent) say that the process associated with lost license keys is their biggest licensing
headache, and only 28 percent of the vendors offer customer self-service tools.
Lack of Usage Visibility Restricting Business Intelligence
Business intelligence is critical for decisions related to new markets, product packaging, and efficient internal resource management. Therefore, software
publishers’ ability to track who is using their software—as well as when, how, and to what extent—is critically important. However, there is a struggle for most
publishers (68 percent) with usage visibility. More specifically, more than half of all respondents reported challenges with tracking feature usage (60 percent),
information about end users (52 percent), and entitlement status (51 percent). Without this information, executive management lacks the insight they need to
effectively drive product investment plans, packaging strategies, and other critical business decisions.
An Effective Software Monetization Strategy is Needed for Maximizing Value
Despite the challenges software publishers face, they recognize that an effective software monetization strategy can help them maximize the value of their IP. In
fact, more than 84 percent of respondents say that an effective software monetization strategy could boost their revenue by up to 50 percent.
Software developers are experiencing the evolution of software monetization. While strong security still tops the list of important software monetization solution
features (63 percent of respondents), it is followed closely by other key features, including flexible packaging/bundling functionality (52 percent), automated
provisioning and enforcement (51 percent), and minimizing the burden on engineering (49 percent).
“The industry finds itself at a critical tipping point as software publishers look for more innovative and effective ways to maximize the value of their IP,” said
Rhianna Collier, Vice President of the SIIA’s Software Division. “They need to better align their software monetization strategy with their business objectives and
drive those strategies very early in the product development cycle. That way, they can develop software packages to meet their customers’ current and future
needs, and build licensing into their software and back-office systems.”
softwaremag.com
SafeNet - 3/13/2013
SafeNet Positioned as a Leader in Gartner’s Magic Quadrant for User Authentication
SafeNet, Inc., a global leader in data protection, today announced that the company has been evaluated and positioned by Gartner, Inc. in the Leaders
Quadrant in the 2013 “Magic Quadrant for User Authentication report.” The report evaluates SafeNet’s Fully Trusted Authentication Solutions, which allow
organizations to protect identities and transactions across an evolving landscape, including cloud, virtual and mobile environments.
SafeNet was designated as ‘a Leader’ by Gartner Inc. for the second consecutive year. According to Gartner, ‘Leaders’ in this Magic Quadrant are vendors
with a solid track record and, typically, a significant presence in the market. They have a clearly articulated vision that is in line with the market trends and their
vision is typically backed by solid technical innovation as well as an understanding of the challenges and opportunities presented by the Nexus of Forces. The
‘Leaders’ business strategy and execution are very sound and vendors in this quadrant can provide a strong solution for enterprises in different vertical industries
across one or many use cases, typically including emerging needs pertaining to cloud and mobile.
“Significant shifts in the IT landscape have forced a tidal wave of change in Authentication and SafeNet has been at the forefront of that change”, stated
Andrew Young, Vice President of Product Management and Authentication, SafeNet. “During the past year, we further advanced our leadership position
through our increased investments in next generation solutions for cloud and contextual risk based authentication. As a result, SafeNet is one of the only
companies that can provide customers with a cloud based platform that can scale with their business, generate operating efficiencies and secure sensitive data
in traditional, social, cloud and mobile environments. We are honored that Gartner continues to recognize us, which we believe is for the strength and
innovation of our authentication solutions.”
Gartner expects further growth in cloud-based user authentication services among enterprises as multitenanted cloud-based services mature, and as cloud
computing becomes more widely adopted as a way of delivering business applications and services generally. Gartner predicts that, by 2017, more than 50% of
enterprises will choose cloud-based services as the delivery option for new or refreshed user authentication implementations — up from less than 10% today.
SafeNet is already well established as an industry leading authentication solutions provider, with one of the strongest positions in the enterprise user
authentication market. SafeNet further built upon this leadership position with the recent launch of SafeNet Authentication Service, which provides customers
with a fully automated cloud-based offering which streamlines authentication workflows and significantly reduces administration overhead. With no infrastructure
required, this powerful combination provides customers with highly secure authentication, fast and seamless migration to cloud environments, reduced costs and
the ability to secure their most sensitive data across users, applications and environments.
softwaremag.com
SafeNet - 3/12/2013
SafeNet Teams with Wind River to Simplify Software Monetization for Embedded Systems Running on VxWorks
SafeNet Sentinel® RMS together with Wind River VxWorks® RTOS provide embedded system vendors with out-of-the-box access to IP protection, software
licensing, and entitlement management capabilities
Software monetization leader, SafeNet, Inc., today announced that it has entered into a formal agreement with Wind River Systems, Inc., a world leader in
embedded and mobile software to help intelligent device and equipment manufacturers in navigating the transition from hardware-centric business models to a
software-based product monetization approach.
SafeNet’s industry-leading software licensing toolkit, Sentinel RMS, now supports VxWorks® RTOS (real-time operating system), enabling customers to enjoy
award-winning software protection, licensing, and management technology out-of-the-box.
“Today’s embedded appliances are rapidly shifting to architectures that combine standardized hardware with more and more sophisticated software. This shift to
software-based intellectual property is enabling more flexible and competitive pricing in an increasingly global, although mature, market,” explains Avni Rambhia,
digital media industry manager, Frost & Sullivan. "This shift to software-based intellectual property also brings with it many new and unfamiliar risks for intelligent
hardware vendors, such as vulnerability to counterfeiting and piracy, and device tampering, making software security a business-critical consideration for all
intelligent device manufacturers.”
VxWorks is a leading operating system for embedded systems used in industrial applications, among others. The agreement between the two companies will
allow Wind River customers using VxWorks to easily take advantage of SafeNet’s award-winning software monetization solutions in order to protect their
intellectual property from tampering, reverse engineering, and theft while also enabling the introduction of feature-based licensing and entitlement management
into their go-to-market strategies.
“Wind River’s customers deliver intelligent hardware systems fueled by increasingly sophisticated software,” said Prakash Panjwani, SVP & GM, Software
Monetization, SafeNet. “Many of those customers face tremendous obstacles when it comes to controlling access to their IP, ensuring the functioning integrity of
their products, and experimenting with new, more flexible business models. It is for this reason that we are proud to team with Wind River to provide their
customers with an out-of-the-box, award-winning solution for all of their software protection and monetization needs.”
SafeNet offers a variety of software protection, licensing, and entitlement management solutions designed specifically for embedded systems. These solutions
are optimized for the resource and memory constraints typically presented by embedded environments. The solutions are highly portable and provide everything
today’s evolved hardware vendor needs to protect, price, package, and manage the software powering their solutions, according to market needs.
“A successful shift to software-centric business models is heavily reliant on mature software licensing and policy management components to ensure a seamless
user experience and scalable business operations.” Rambhia continued. "Vendors of proven, secure, and scalable software licensing and entitlement
management solutions, such as SafeNet, are key enablers of this new generation of software-powered intelligent devices.”
SafeNet offers Sentinel Software Monetization Solutions tailored specifically to protect and manage software embedded within any piece of hardware—from
networking appliances and medical devices to mobile handsets and industrial automation equipment. These offerings provide device and equipment manufacturers with all the tools they need to effectively protect their products from tampering and reverse engineering, while also opening up an entirely new
world of packaging and opportunities to maximize profitability.
Sentinel Embedded Software Monetization Solutions feature:
· Award-winning license enforcement and IP protection technology for ensuring device and brand integrity, mitigating reverse engineering and safeguarding
revenue.
· The industry’s widest variety of flexible licensing models and enforcement mechanisms for enabling device and equipment manufacturers to meet the
packaging demands of every customer every time.
· A reduced footprint paired with efficient use of memory, allowing our solutions to conform to the strictest of embedded environment constraints without
compromising device performance.
· Out-of-the-box support for a broad variety of platforms and operating systems, and a design that supports quick and easy custom porting.
· Integration with the company’s web-based entitlement management solution, Sentinel EMS, enabling software publishers to centralize and automate
product activation, usage tracking, and ongoing end-user entitlement management.
softwaremag.com
SafeNet - 1/10/2013
SafeNet Names Michael Branca as Chief Financial Officer
SafeNet, Inc. today announced that Michael Branca has been appointed to the position of chief financial officer (CFO), effective immediately. In this role, Mr.
Branca will be responsible for SafeNet’s global finance functions, including accounting, financial planning and analysis, controllership, treasury, and tax. Mr.
Branca will report directly to Dave Hansen, SafeNet’s president and chief executive officer.
“Mike’s deep technology background, coupled with his 15-year tenure as both a public and private company CFO, make him an ideal fit for SafeNet,” said Mr.
Hansen. “I’ve had the privilege of working with Mike previously and believe that his financial acumen, operational expertise, and strong leadership skills will be
instrumental in helping SafeNet continue its transformation and enter its next phase of growth.”
Mr. Branca succeeds Greg Repas, who served as the company’s interim CFO following the departure of Charles Neral in June 2012. Mr. Repas will continue to
serve as SafeNet’s vice president and chief accounting officer.
“The security industry is undergoing a dynamic transformation, and I believe that SafeNet’s market-leading data protection and rights management portfolios are
well positioned to capitalize on the growth that lies ahead,” said Mr. Branca. “I am excited to join the company, and I look forward to working with Dave and the
rest of the executive team as we build upon the company’s solid financial foundation, and develop a strategy that will accelerate and drive the company’s long-
term growth.”
Mr. Branca brings more than 30 years of experience in financial, operational, and business management. He joins SafeNet from BMC Software (NASDAQ:
BMC), where he served as vice president, Finance, focusing on integration activity. Prior to BMC Software, he spent nearly six years as vice president and CFO
of Numara Software, until the company’s acquisition by BMC Software in January 2012. He has held CFO positions at MTS Medication Technologies Inc., Trak
Communications, Inc., and Reptron Electronics Inc. He began his career at IBM (NYSE: IBM), serving 13 years in various senior financial management positions.
Mr. Branca received a Bachelor of Science degree in Applied Economics and Management from Cornell University, and a Master of Business Administration
degree from the University of Scranton.
softwaremag.com
SafeNet - 12/10/2012
SafeNet Appoints Dave Hansen as President and Chief Executive Officer
SafeNet, a global leader in data protection, announced today the appointment of Dave Hansen, an information security and cloud veteran, as the company’s
new President and Chief Executive Officer. Mr. Hansen will also join the company’s board of directors. Mr. Hansen succeeds current President and CEO, Chris
Fedde, who has been with SafeNet since 2001.
Dave Fishman, a Partner at Vector Capital and a member of SafeNet’s Board of Directors, said, "We want to thank Chris for the strong leadership that he has
demonstrated throughout his tenure at SafeNet. During that time, the company has transformed from a diversified vendor of security tools into one of the
industry’s leading, pure-play data protection and rights management companies. Under his leadership, SafeNet significantly enhanced its market leading product
portfolios and positioned itself to capitalize on the fast growing data protection for cloud and virtual markets.”
"I have enjoyed the opportunity to work at and lead SafeNet over the past eleven years. I am proud of all that we have accomplished, particularly the
company’s transformation into an industry-recognized data protection market leader," said Mr. Fedde. "SafeNet is a company with tremendous opportunities and
I look forward to its continued success."
Dave Hansen has a successful track record of creating and executing innovative IT strategies and solutions for the enterprise. He arrives at SafeNet from BMC
Software (NASDAQ: BMC), where he most recently served as Vice President and General Manager. Mr. Hansen joined BMC Software through its acquisition of
Numara Software, a global leader in service, asset, and mobile device management for IT professionals, where he served as the company’s President and Chief
Executive officer, and was responsible for creating and driving the company’s successful cloud strategy.
"Dave is a known innovator within the security industry that brings strong strategic and execution skills, a proven ability to lead high performing management
teams and a successful track record of driving growth for multi-national corporations" continued Dave Fishman. "We look forward to working with Dave and
believe that his leadership and strong operational expertise will build upon SafeNet’s culture of innovation and help drive SafeNet’s evolution and growth
forward."
Prior to Numara Software, Mr. Hansen spent more than nine years at CA Technologies (NASDAQ: CA), where he successfully led the development and
execution of CA’s Enterprise Solutions and Cloud Strategy, overseeing the creation of the company’s portfolio of cloud products and enterprise solutions, which
helped enterprises seamlessly migrate and manage their IT across cloud, on-premise, and hybrid environments. He also led its Security Business Unit, where he
delivered new versions of market-leading enterprise identity and access management solutions. Prior to that, Mr. Hansen served as the company’s Chief
Information Officer, where he was responsible for implementing the company’s global IT strategy, applications development, and IT compliance.
“SafeNet has undergone a tremendous transformation over the past five years, and is uniquely positioned to solve the most complex security issues facing CIOs
and CSOs today,” said Mr. Hansen. “With SafeNet’s market-leading data protection and rights management portfolios, and the recent introduction of game-
changing cloud and virtualization products, the company is set to lead the way in securing access and data for the cloud and from the cloud. I’m very excited to
join SafeNet and I look forward to working with SafeNet’s talented team to further build upon the company’s momentum, and continue to deliver strong value to
customers and drive growth across the company.”
softwaremag.com
SafeNet - 12/3/2012
SafeNet Announces Next-Generation Software Monetization Platform
Sentinel LDK pairs award-winning security and sophisticated entitlement management in a single, out-of-the-box software monetization solution
SafeNet, a global leader in data protection and software monetization, today announced the general release of Sentinel License Development Kit (LDK),
SafeNet’s next-generation software protection, licensing, and management platform.
For the first time, SafeNet customers will be able to pair the company’s award-winning software copy and intellectual property (IP) protection features with the
web-based, license management capabilities of Sentinel EMS, SafeNet’s entitlement management system. Combined with company’s newly released advanced
hardware-based software protection platform, Sentinel HL, Sentinel LDK delivers software publishers a comprehensive, out-of-the-box software monetization
solution that will better enable them to confidently protect their software and simplify operational processes while enhancing the end-user experience and
ultimately maximizing software revenues.
“Here at SafeNet, we remain dedicated to not only providing best-in-class solutions that improve how software publishers license and manage their applications
today, but also to making sure our customers have the tools they need to confidently tackle the software monetization challenges they will face in the future,”
said Prakash Panjwani, senior vice president and general manager of SafeNet’s software rights management division. “Sentinel LDK provides customers with a
solution platform for addressing their virtualization, complex packaging, and cloud service monetization challenges.”
Key Features and Customer Benefits of Sentinel LDK Include:
· Web-based Entitlement Management: Full integration with Sentinel EMS provides software publishers with the tools they need to effectively deliver, track,
and manage end-user entitlements and product usage. Using Sentinel EMS software, publishers can also provide their end users with a customer portal to
activate and manage their own entitlements. Sentinel EMS helps ISVs simplify and automate many tasks associated with licensing while empowering end users
and decreasing support costs.
· Next-Generation Sentinel Envelope Technology: Adoption of the latest technology and techniques for software protection enables software publishers to
protect their applications from reverse engineering, code tampering, and intellectual property theft.
· Certificate-based Licensing: Utilization of certificate-based licensing provides tamper-proof, software-based licenses in a clear-text format, making them
easy to understand and support for software publishers and end users alike.
· Automated License Re-Host: Sentinel LDK is the industry’s only licensing solution that enables end users to move their software-based licenses in three
easy steps without having to contact the ISV for support. This dramatically improves the end-user experience and also relieves an unnecessary burden typically
put on software organizations’ support teams.
· “User-Mode” Option for Software-based Licenses: Facilitates end-user software installation while in user mode or administrator mode, significantly reducing
end-user frustrations and support burdens.
· Next-Generation Hardware-based Software Protection Platform: Sentinel LDK is the first offering in the SafeNet portfolio to ship standard with the
company’s recently released family of smart-card-based Sentinel HL hardware tokens. Featuring superior performance and memory management, Sentinel HL
tokens are the industry’s leading hardware-based software protection token.
· Hardware Key Batch Programming: Enables ISVs to burn multiple Sentinel HL keys simultaneously, saving time and money.
“With the release of Sentinel LDK, SafeNet is once again demonstrating its commitment to providing the software industry with the most secure, versatile,
efficient, and intelligent software monetization products and services,” added Mr. Panjwani.
softwaremag.com
SafeNet - 11/8/2012
SafeNet, Inc. Reaches Agreement to Sell Government Solutions Business
SafeNet, Inc., the global leader in data protection , today announced it has entered into a definitive agreement to sell its Government Solutions business unit to
an undisclosed buyer. The transaction, which is subject to customary closing conditions, including required regulatory approvals, is expected to close by the end
of 2012. Financial terms of the agreement will not be disclosed.
The divestiture is in line with SafeNet’s long-term strategy to focus on the company’s data protection solutions, protecting high-value information for enterprises,
critical infrastructure providers, and international governments. SafeNet will concentrate its investment and product development in the areas of data protection
and strong authentication for the data center, virtual data center, and the cloud.
SafeNet’s Government Solutions business unit is a leader in trusted and innovative mission-assurance Type 1 solutions used throughout U.S. government
agencies, the Department of Defense, the intelligence community, and by systems integrators to protect the highest levels of classified information.
“We are very proud of our Government Solutions business unit’s long history of innovation and success,” stated Chris Fedde, SafeNet’s president and chief
executive officer. “Over the years, SafeNet’s name has become synonymous with data protection. We have demonstrated our innovation and leadership in the
data protection space through the introduction of game-changing cloud security solutions, and today’s announcement will allow us to sharpen our focus and
extend our leadership in the growing market of data protection for the cloud and from the cloud.”
SafeNet’s recent product introductions include SafeNet Authentication Service, a pure cloud, strong authentication platform; ProtectV, a high-assurance
solution for securing cloud and virtual infrastructure and related data; SentinelCloud, cloud-based software licensing management; and StorageSecure, the
market’s only multi-gigabit storage data protection appliance. In addition, SafeNet has announced several cloud-related strategic alliances with VMware,
Amazon Web Services, and NetApp.
softwaremag.com
SafeNet - 10/18/2012
Carahsoft Adds SafeNet’s Data Protection Technologies to GSA Schedule
Solutions That Safeguard Data in the Cloud Available to Government Sector
SafeNet Inc., a global leader in data protection, today announced it has entered into an aggregator agreement with Carahsoft Technology Corp., the trusted
government IT solutions provider. Under the agreement, Carahsoft will serve as an authorized aggregator of SafeNet products, making SafeNet’s data
protection solutions, including ProtectV, StorageSecure, KeySecure, available to its public sector reseller partners and customers via Carahsoft’s GSA schedule.
“Government agencies are looking for more efficient ways to protect their high-value information,particularly as they transition to the cloud. By teaming with
Carahsoft and its broad portfolio of virtualization and security providers, SafeNet will be able to provide more complete solutions to government agencies to fulfill
this need,” said Joe Dvornicky, federal vice president, SafeNet.
SafeNet’s intelligent, data-centric encryption, access control and key management solutions persistently protect data throughout the information lifecycle and
support changing cloud delivery models—from today’s SaaS and private clouds to the evolving demands of hybrid and public clouds. From the datacenter to the
cloud, agencies can remain protected, compliant and in control.
“With its sophisticated, data-centric security solutions, SafeNet enables federal agencies and organizations to gain the agility they need to leverage cloud
environments most effectively, without making any compromises in security, privacy, or compliance,” said Craig P. Abod, Carahsoft president. “SafeNet’s
products are a great complement to our VMware and Symantec offerings, and we’re excited to make these products available to our reseller partners and
government customers.”
SafeNet’s solutions are available immediately on Carahsoft’s GSA Schedule GS-35F-0119Y. For more information, register for “ProtectV – Data Protection for the
Cloud,” a complimentary webcast being sponsored by SafeNet and Carahsoft at 2 p.m. EDT, Tuesday, November 13, 2012; or contact the SafeNet team at
Carahsoft at 703-871-8578.
softwaremag.com
SafeNet - 10/3/2012
Integralis Leverages New SafeNet Authentication Service to Power their Cloud Authentication Service
SafeNet, Inc., the global leader in data protection, today announced the immediate availability of SafeNet Authentication Service, a new cloud-based
authentication service. The cloud authentication solution was designed and engineered specifically for the service provider environment and allows service
providers to rapidly introduce authentication-as-a-service to their enterprise customers. By doing so, it enables service providers to increase their average
revenue per user (ARPU), significantly reduce the cost and complexity associated with offering and implementing strong authentication, and strengthen their
security and compliance posture.
Today’s launch builds on SafeNet’s industry leadership in authentication, which was recognized earlier this year when Gartner placed SafeNet in the “Leaders’
quadrant” in its January 2012 Magic Quadrant for User Authentication. SafeNet Authentication Service extends the company’s portfolio of two-factor
authentication solutions, providing enterprise and government organizations with unprecedented choice and flexibility to best customize their authentication
solutions to meet current and future security needs.
SafeNet Authentication Service’s fully automated, customizable cloud platform can substantially reduce authentication-related operational costs through the
elimination of manual tasks associated with the provisioning, administration, billing, and management of users and tokens. Service providers can manage their
customers from a multi-tier, multi-tenant platform that is vendor-agnostic and will work with an organization’s existing token technology, enabling a quick migration
to a centralized cloud environment with minimal disruption to end users. In addition, the service can be white-label branded and completely customizable to the
service provider’s needs, enhancing the service brand and overall awareness. In addition, the platform is highly scalable, which enables service providers to
accommodate a growing number of customers added to the service without requiring costly infrastructure upgrades.
Strong authentication has also become a major challenge for today’s “extended enterprise,” in which remote employees, partners, customers, and other third
parties require access to an organization’s systems, applications, and data. With no infrastructure required, enterprises can quickly turn to service providers for
SafeNet Authentication Service to simplify the implementation of strong authentication in this environment—providing “security without borders” from a fully
automated, high-assurance, trusted cloud environment.
In addition, SafeNet Authentication Service enables service providers to free up their customer’s IT staff to focus on higher-value activities. By doing so, this
automation facilitates real-time policy application to ensure regulatory compliance and improved business efficiency.
According to Chris Moralesof the 451 Research Group, “The consumerization of IT, the adoption of mobile computing and SaaS applications, and the incipient
growth of desktop virtualization places identity front and center of emerging security and management concerns. As identity assumes more centrality for IT (in
terms of both industry and organizational function) in coming to terms with these trends, securing the integrity of the identity assertion, characterizing it in terms of
risk assessment, and supplementing (or supplanting) user name and password comprise the initial set of security hurdles. Also, as enterprises and organizations
assess the requirements for authentication against the cost and flexibility of the options available from incumbent vendors, authentication-as-a-service, and new
form factors or channels such as smartphone tokens and one-time passwords delivered as an SMS have gained in appeal.”
SafeNet Authentication Service reflects the combined offering resulting from SafeNet’s acquisition of Cryptocard in March 2012. This new service combines
SafeNet’s market-leading authentication solutions with Cryptocard’s innovative, scalable, and flexible platform.
Key Features of SafeNet Authentication Service include:
Generates Increased ARPU for the Service Provider: Delivers a simple per-user pricing model. This, combined with the ability to customize and brand the
service to match any service provider’s unique infrastructure and security requirements, helps enhance brand awareness and generates higher ARPU than what
would normally be found with traditional strong authentication models.
Significantly Reduces Total Cost of Operations: The fully automated management system provides user management, provisioning, single sign-on, strong
authentication, authorization, billing, reporting, auditing, and policy alerts, which are all integrated with LDAP/Active Directory. The system’s automated policies,
self-service, and reporting provide a seamless and enhanced user experience, resulting in substantial time and operational cost savings, and enhanced security
and compliance capabilities, when compared to traditional authentication.
Scalable, Customizable Platform Adapts and Grows as Needed: Enables service providers to rely on a single, infinitely scalable cloud-based platform to manage,
maintain, and provision a wide range of tokens to an unlimited number of users with a multi-tier, multi-tenant platform.
softwaremag.com
SafeNet - 9/12/2012
SafeNet, a Leader in Software Licensing and Entitlement Management, Heads to California for LicensingLive! 2012
Conference Focused on Transforming the Software Monetization Industry and Optimizing Profitability of Software Solutions
SafeNet, Inc., a global leader in data protection and software monetization solutions, today announced that LicensingLive! 2012 will take place October 2nd
through October 3rd at the Cypress Hotel in Cupertino, California. With several hundred attendees expected, LicensingLive! 2012 will focus on how software
publishers can transform their software monetization strategies by evolving their approach to licensing, entitlement management, and customer enablement in
order to optimize the profitability of their software.
This year's LicensingLive! theme is All About Software Monetization. As software pricing, packaging, and licensing requirements have become more
complicated, so have the associated operational processes and the impact they have on company operations overall. The conference will provide attendees
with an opportunity to hear from leading industry experts and their peers on how best to meet these challenges. Importantly, conference participants will
demonstrate the value that can be derived, financially and operationally, when the proper software monetization strategy is put in place and executed properly.
The first day of the conference, open to all registrants, will focus on industry trends and best practices, and will deliver insight from industry thought leaders,
including Alan Zeichick, the editorial director of SD Times, and Amy Konary, research vice president, software licensing, provisioning, and delivery at analyst firm
IDC. Mr. Zeichick's presentation will focus on the top three opportunities awaiting software publishers in 2012 and beyond, and Ms. Konary's presentation will
explore the new look of software monetization. The afternoon touts a lineup of executives from industry-leading embedded, cloud, and on-premise software
organizations who have led the design and implementation of truly exceptional software monetization strategies.
The second day of the conference, reserved for SafeNet customers only, will feature interactive breakout sessions designed to help users share best practices
for developing software monetization strategies, creating a strong development roadmap and, importantly, understanding how they can generate the strongest
return from their software solutions. The day will also feature a presentation of SafeNet's SRM roadmap, a meet-and-greet session with executives, and an
opportunity to influence the company's development path.
softwaremag.com
SafeNet - 8/27/2012
SafeNet Enters the Virtual Security Market with Protect V™
Protect V Delivers Comprehensive Data Control, Visibility and Governance for VMware & AWS Hosted VMs
ProtectV provides a complete data encryption solution for virtualized and cloud environments, to provide data control, governance and visibility and enable
compliance.
Customers can now migrate mission-critical applications to virtual/cloud environments while ensuring data ownership through encryption and control of sensitive
data. SafeNet ProtectV is compatible with VMware vCenter™ and VMware vShield™ virtual infrastructures as well as AWS EC2 & EBS environments.
With ProtectV, customers can secure critical data throughout the information lifecycle – from provisioning to termination. Key capabilities include encryption of
VMs, pre-launch authentication, central auditing and FIPS certified key management.
Efficiency, automation, and availability are some of the key benefits of cloud computing. However, many organizations may not be able to take advantage of
these benefits due to concerns with regulatory compliance and security risks such as provider access to tenant data.
As more data moves to private or public clouds, the number of super-users with access to an organization’s data multiplies, the risk of VMs being copied without
the owner knowing increases, the possibility of temporary file trails rises, and the organization’s data is more vulnerable to being compromised. To address the
data security issues and deliver control and governance of data in the cloud, SafeNet, a global leader in data protection introduces ProtectV, an encryption
solution that has achieved VMware Ready™ status.
ProtectV enables virtual machines and storage volumes to be as secure as physical servers and storage in robust, secure on-premise environment. Customers
can reap the full benefits of agility and cost savings by turning their virtual datacenter or cloud into a trusted environment with data governance, control and
security.
SafeNet ProtectV is compatible with VMware vShield™ and VMware vCenter™. In addition, SafeNet ProtectV can be used by Amazon Web Services customers to
secure their critical data in the cloud.
According to Mike Rothman of Securosis, “The flexibility and abstraction of the cloud means many privileged users can create new virtual instances or copies of
virtual environments outside of the management console. They can also change access keys, add access or entitlements, or change permissions. This means
that organizations don’t have the same level of control over network access and it’s easier for new virtual servers to be created out of thin air, significantly
increasing the risk of data exposure. Security needs to be implemented directly within the virtualized instances, and organizations cannot rely solely on the cloud
infrastructure to provide it.”
SafeNet ProtectV helps organizations address these challenges with a solution that centralizes the management of encrypting VMs in AWS and VMware
environments. Users can manage the policy of what VMs encrypt and who should have access and by doing so, ensuring unified security policies throughout. In
this way, it is possible to enjoy the advantages of the cloud and virtualization, while at the same time, achieving full, auditable compliance with regulations and
maintaining the visibility for governance.
ProtectV delivers:
Complete VM Security and Data Isolation:SafeNet ProtectV provides granular, full-VM encryption, pre-launch authentication and an on-premise hardware root of
trust, delivering comprehensive protection throughout the information lifecycle. ProtectV enables you to run your systems as if it was your own private data
center, even in co-mingled or multi-tenant environments. Security teams are now able to properly isolate sensitive assets and maintain ownership of their data
throughout its lifecycle.
Protection from Rogue Admins: All VMs and associated storage volumes are encrypted, from the VM instances, snapshots and backups, across locations and
disaster recovery sites. Super User Admins, who may have control of the virtualization infrastructure, cannot access the encrypted VMs.
Enforced Compliance: ProtectV provides undisputed control and proof of data governance through audit logs. ProtectV enables organizations to enforce the
proper controls, present a trusted audit control regardless of where the data is hosted or stored and sustain compliance with regulations, including PCI DSS,
HIPAA and HITECH.
Data Governance and Visibility: ProtectV affords cloud security visibility through a centralized policy enforcement and audit point. SafeNet provides a trusted,
high assurance key management environment, delivering undisputed ownership of data and keys. As a result, organizations and their compliance auditors are
assured complete control of their keys to their data and ownership with the complete logs for the necessary visibility.
Cross-Platform Key Management:Even the best encryption is meaningless without proper key management. As part of SafeNet’s data protection portfolio,
SafeNet ProtectV integrates with SafeNet’s Enterprise Key Management solution, KeySecureTM.KeySecure enables security teams to centrally and uniformly
manage cryptographic keys across a wide variety of their organization’s encryption platforms, streamlining key and policy administration.
SafeNet Executive Commentary:
“Virtualization and cloud computing offer tremendous benefits in cost and agility, but organizations cannot use the same security approach they use for a
physical datacenter. Today, organizations have more data than ever before – more data means more threats, and some of the biggest threats are right there in
the organization. ProtectV is the first security solution for cloud and virtual datacenters that enables control, compliance and governance of critical data. By
encrypting the data itself, organizations maintain control of high-value assets throughout the information lifecycle, including protecting against rogue admins, and
have the ability ‘digitally shred’ data in the event of a breach, ensuring the safety of critical assets. With ProtectV, organizations achieve the same control and
security level in their virtual environment as they had in their physical datacenter.”
Sangeeta Anand, corporate vice president and general manager, Data Protection Business Unit, SafeNet, Inc.
softwaremag.com
SafeNet - 8/22/2012
SafeNet to Showcase Cloud and Virtual Machine Encryption Strategies at VMworld 2012
Featured Presentations on Using Encryption to Move and Use Sensitive Data into the Cloud without Sacrificing Data Protection, Control and Compliance
SafeNet, Inc., a global leader in data protection, will offer two sessions at VMworld that address the critical role that intelligent encryption strategies play in
ensuring the security and visibility of high value data as it moves into public, private and hybrid clouds.
As more high value data moves into these environments, organizations are increasingly at risk of losing the protection, control and compliance of that data. With
data breaches growing in number and intensity, it has become clear that traditional security tactics are glaringly inadequate to guard organizations’ data from
unauthorized access or exposure. As such, SafeNet works with organizations to specifically attach security to what matters most,-their high value data. This
allows organizations to move away from the traditional mindset of breach prevention and take a more proactive defense to ensure that their critical data remains
secure. SafeNet’s intelligent encryption solutions can scale, manage and secure large volumes of data as it moves from the data center to virtual environments,
companies ensure that their high value data remains protected, even if the perimeter has been breached, even if there is no perimeter.
SafeNet will discuss these issues and more at VMworld 2012, which takes place at the Moscone Center in San Francisco from August 27 to August 30.
SafeNet, a gold sponsor of the event, will have executives, technical experts, customers and partners present to discuss the following:
“Panel: Real World Perspectives of Using Encryption for Cloud Security and Data Governance”
Tuesday, August 28th at 2:50 pm Pacific Time; Solutions Exchange Theater
Moderator: Sangeeta Anand, vice president and general manager, data protection business unit, SafeNet
Panelists: Gargi Mitra Keeling, group product manager, VMWare
Ian Lim, vice president, information security for CoreLogic
Ken Owens, vice president of security and virtualization technologies, Savvis
Alan Daines, director, information security engineering and operations, Dell
Sangeeta Anand will moderate a panel discussion around how the lack of physical control, or defined entrance and egress points in cloud and virtual
environments, bring a host of security issues – control of snapshots and backups, data deletion, geographic regulatory requirements, maintaining visibility for
governance and protecting from an expanding class of new privileged users. Ms. Anand and the panelists will discuss how encryption is being utilized to unify
cloud security—allowing customers to protect, control, and comply. The panelists will address how private, public, and hybrid cloud adoption are changing the
risk profile of organizations, and what needs to be done to lay the groundwork for secure migration, governance, and protection of an organization’s high-value
assets in the cloud.
“A Cloud Encryption Playbook—Enforce Confidentiality of Data in Virtual Machines” (ID: SPO2550)
Tuesday, August 28th at 3:30 pm Pacific Time
Speakers: Rami Shalom, vice president, data protection business unit , SafeNet
Gargi Mitra Keeling, Group Product Manager, Security, VMware
The hour-long presentation will discuss how to overcome the challenges in migrating sensitive data into private, public, and hybrid clouds with SafeNet
encryption solutions working in conjunction with VMware security solutions.
softwaremag.com
SafeNet - 8/20/2012
SafeNet Introduces StorageSecure - Enters Storage Security Market
Industry’s Only High Security Encryption Appliance for Network Attached Storage (NAS)
Developed in Collaboration with NetApp, a Leader in Storage and Data Management
SafeNet announces the immediate availability of StorageSecure, a self-contained hardware appliance that delivers fast, granular encryption of data in storage
environments.
StorageSecure securely encrypts and decrypts data within the hardware appliance, providing seamless data security while enforcing customized policies
surrounding the data's access and use, helping customers achieve and maintain compliance.
In order to assist channel partners meet increasing security demands, SafeNet and NetApp are providing their partners with a scalable, manageable and secure
storage solution that will seamlessly offer data isolation in multi-tenant environments.
SafeNet KeySecure can be used for both centralized key management of StorageSecure appliances and NetApp Storage Encryption (NSE) full disk
encryption.
Data breaches are accelerating with alarming speed, and traditional breach prevention tactics are simply insufficient to guard organizations’ data from
unauthorized access or exposure. Today, SafeNet, a global leader in data protection, extends its comprehensive portfolio of data security solutions into the
storage security market with the immediate availability of StorageSecure.
StorageSecure is the industry’s first network attached storage (NAS) security solution that encrypts data granularly over the network at multi Gbps speed.
Customers gain the benefits of compliance, improved governance, and data security for their mission-critical data at rest.
Gartner analyst Sid Deshpande notes that large scale digital content and unstructured data are growing at a fast pace, and as a result an increasing number of
users are adopting scalable NAS solutions. The consolidation of corporate data, including high-value information, into large centralized repositories such as NAS
is ushering in a new set of compliance-related issues and security risks. Multi-tenant NAS environments increases the number of users and storage administrators
with access permissions to the same storage environment. To prevent unauthorized access and use of high-value data, as well as enabling effective auditing,
customers need to come up with a new method to protect their data.
StorageSecure was developed in partnership with NetApp, the industry leader for NAS solutions, and designed to address these needs. By providing granular
encryption, customers can compartmentalize the use of data in NAS, mitigate the risk of storage admins accessing high-value data without affecting their day to
day job, enable effective data shredding when needed, and demonstrate trustworthy audit trail for all StorageSecure-protected data access events.
According to Gartner Analyst, Eric Oulette in the July 27,2012 Hype Cycle for Data and Collaboration Security 2012, organizations that use several
disparate/isolated storage data encryption solutions should also consider the benefits of consolidating individual solutions into centralized data center storage
encryption to simplify deployment and maintenance cost/efforts and to enable the consistency of encryption policy applicability.
StorageSecure provides those benefits to customers, including:
Policy-based Data Security: Granular encryption of data communicated over Common Internet File System (CIFS) and Network File Service (NFS) at the folder
level segregating data stored in shared NAS environments ensuring that each user’s data is effectively isolated from unauthorized access by other users and
administrators. An additional layer of protection against rogue administrators is unique in the industry.
Enhanced Data Governance: The hardened and trusted FIPS 140-2 Level 3 StorageSecure is a tamper-proof network appliance with centralized high-
assurance auditing and security management that stores and manages the encryption keys with complete security. This enables a complete and unmatched
audit trail of access events to high-value data stored in NAS.
Investment Protection: StorageSecure integrates within existing IT architectures and uses existing Active Directory, Lightweight Directory Access Protocol
(LDAP) or Network Information Service (NIS) security policies and client authentication, and covers any CIFS and NFS communications supporting NAS and file
servers.
Cross-platform Key Management: As part of SafeNet’s data protection portfolio, StorageSecure integrates with SafeNet’s Enterprise Key Management solution,
KeySecureTM . KeySecure enables security teams to centrally and uniformly manage cryptographic keys across a wide variety of their organization’s encryption
platforms, while at the same time streamlines key and policy administration. Based on the KMIP protocol (the industry standard key management protocol),
KeySecure offers key management for StorageSecure, as well as the widest variety of storage encryption solutions including encryption for SAN by managing
for Brocade encryption switch (BES)self-encrypted drives used in many new SAN and NAS environments (e.g. NetApp NSE), self-encrypted backup tape drives.
softwaremag.com
SafeNet - 8/2/2012
SafeNet and Internet2 to Secure Digital Identities for Universities
Authentication Leader and Advanced Networking Consortium to Provide PKI Tokens & Smart Cards to Help Universities Secure and Access Information Across
Multiple Platforms & Environments at Significant Cost Savings
SafeNet and Internet2, through its InCommon trust services, have signed an agreement to offer smart cards and USB-format hard tokens for those interested in
using Public Key Infrastructure (PKI) for enhanced privacy and security.
SafeNet and Internet2 will provide a special discount to universities that will enable their faculty and students to secure and access information secured with PKI
across multiple platforms and environments at a significant cost savings.
SafeNet, Inc., a global leader in data protection, and Internet2®, the world’s most advanced networking consortium, today announced they have entered into
an agreement to offer SafeNet smart cards and PKI hard tokens for cryptographic storage of PKI credentials.
As part of its multifactor authentication program, Internet2’s InCommon will offer SafeNet’s smart cards and PKI tokens to participating higher education
organizations. These devices provide researchers, faculty, students and staff with secure, cryptographic storage of the client certificates that they may use to
access campus-based and online resources secured with PKI, as well as allowing for S/MIME digital email signatures and email encryption.
SafeNet will serve as one of the preferred vendors of security technology, providing InCommon participants with two-factor authentication devices that enable
highly secure, certificate-based access to online and local network resources. Use of hard tokens or smart cards can be helpful if users are working on a shared
machine in a campus computer lab or want to use the same cryptographic credentials on multiple devices, such as on a desktop at work and a laptop at
home.
InCommon serves the U.S. education and research communities, supporting a common framework of trust, including the U.S. identity management trust
federation for research and education, a community-driven Certificate Service, an Assurance Program for higher levels of trust, and a multifactor authentication
program.
The more than 400 InCommon participants include colleges, universities, research organizations, U.S. government agencies, and their sponsored partners.
softwaremag.com
SafeNet - 7/10/2012
SafeNet Recognized as the Clear Market Leader in Global Software License Management by Frost & Sullivan
Competitive Industry Analysis Attributes SafeNet’s Dominant Position to Its Effective and Compelling Product Line Strategy
SafeNet, Inc., a global leader in data protection, today announced that research by leading analyst firm Frost & Sullivan has shown the company as the clear
market leader in software license management in its Competitive Analysis of the Global Software License Management Market, 2011.
Software license management (SLM) enables software publishers and intelligent device vendors to efficiently monetize their products, particularly for enterprise
and networked deployments. Solutions in this space help developers enforce entitlements and automate back office systems, including invoicing, billing,
tracking, and auditing. Frost & Sullivan analyzed the SLM market in three segments: desktop software, embedded software, and cloud software.
SafeNet earned its leadership position through a combination of current market penetration and ongoing product line strategy. The report states that SafeNet’s
market-leading solutions and broad geographical reach contribute to its outstanding position in the market today, and position it well for continued market
dominance over the forecast period. Accounting for well over half of total market revenues, SafeNet is placed far ahead of other competitors in the market, who
are classified as challengers, contenders, emerging or receding participants, or niche market participants. As part of its evaluation of SafeNet’s product strategy,
the report also predicts that SafeNet’s Sentinel Cloud is poised to see rapid market traction in the fast growing cloud software segment. SafeNet’s Sentinel Cloud
suite is designed to provide software vendors with the flexibility, security, control, and visibility they need, regardless of whether their software is installed,
embedded, or in the cloud.
“Frost & Sullivan’s recognition of SafeNet’s leadership in software licensing validates our strategy, including our innovative approach to SaaS licensing,” said
Prakash Panjwani, general manager and senior vice president of Software Rights Management at SafeNet. “The emergence of cloud computing and the
subsequent evolution of the software industry has created an opportunity for us to help our customers embrace new business models that create revenue
streams and can easily adapt to the emerging demands of the IT landscape. We plan to stay at the forefront of cutting-edge software licensing by continuing to
provide our customers with robust, market-leading software monetization technology.”
SafeNet’s Sentinel portfolio of products and services provide secure, flexible software licensing and monetization solutions. Sentinel addresses every aspect of
software monetization, from copy and intellectual property (IP) protection to product catalog management and end-user experience improvement. No matter what
type of software – installed, embedded, or cloud services – Sentinel solutions provide robust license enablement and enforcement to provide software vendors
with control and visibility into how their applications are deployed.
“SafeNet’s market-leading position is based on its ability to provide software vendors with a suite of products and services that addresses a broad range of
software vendors’ current and emerging needs,” said Avni Rambhia, Senior Industry Analyst at Frost & Sullivan. “The company’s continued focus on customer-
centric innovation, for example, in empowering ISVs to embrace new opportunities in the cloud, will play a key role in ensuring continued market leadership -
both on a global and on a cross-segment basis.”
softwaremag.com
SafeNet - 6/20/2012
SafeNet and Pitney Bowes Collaborate on the First Cryptographically Secured Digital Mailbox in the Cloud
Volly™ Digital Mail Service Leverages SafeNet’s Data Protection Solutions to Enable Secure Digital Mail Delivery & E-Payment
SafeNet, Inc., a global leader in data protection, and customer communications technology leader Pitney Bowes Inc. (NYSE:PBI) today announced that the
companies have joined forces to enhance the security of digital mail delivery in the cloud for consumers using Volly, a Pitney Bowes digital delivery service for
online mail and bill payment.
With Volly, customers can receive, view, organize, and manage bills, statements, and other mailed content from multiple providers using a single, secure cloud-
based online application. Volly is an opt-in, consumer-focused consolidation service that also includes online bill payment. It will be available at no cost to U.S.
Pitney Bowes has decades of experience and a broad array of patents in data encryption, which are central to the performance of its global network of postage
meters. These digital devices manage billions of dollars of funds annually in a secure environment. Having brought these encryption capabilities to the design of
the Volly system, Pitney Bowes is now further enhancing Volly’s security by leveraging SafeNet’s DataSecure® appliances to help customers identify and
validate the source of digital mail delivery. By selecting SafeNet as its security technology partner, Volly’s digital mailbox content can securely reside in the cloud,
which will allow Volly customers to access their account and virtual mailbox from any type of device, whether it is a personal computer or smartphone. This is
ideal for today’s consumer who is constantly on the move and will be able to pay their bills or manage their statements regardless of where they are located.
In order to maintain security and business continuity while moving into the cloud, companies such as Pitney Bowes are deploying SafeNet DataSecure on
premise, and adding solutions like SafeNet ProtectApp to secure virtualized applications that interact with sensitive data, such as credit card numbers and
personally identifiable information. The centralized control provided by DataSecure creates the flexibility to work with multiple cloud providers, and the solution’s
on-premise platform establishes a root of trust for policy enforcement and lifecycle key management.
SafeNet Executive Comment:
“Cloud computing offers tremendous benefits in cost and agility but it can cause a breakdown in the traditional methods for ensuring visibility and control of
infrastructure and information,” said Tsion Gonen, Chief Strategy Officer at SafeNet. “By leveraging SafeNet’s security infrastructure, Pitney Bowes has been
able to secure the digital mailbox by providing end-to-end encryption and authentication, which are essential for protecting large volumes of data within private
and public clouds. Now, Volly customers will be able to securely access their financial statements and make online payments while on the go, regardless of
location or device.”
Background:
The movement of data to the cloud creates a number of specific security challenges, particularly in tracking and controlling data. It also increases risk by
introducing numerous privileged users and administrators that access and operate data and systems independently. Moving to the cloud can reduce access
control and increase liability concerns and compliance costs.
As organizations move sensitive data to the cloud, proactive and robust security controls enabled by large-scale encryption will be an essential method for
ensuring data security and compliance.
Maintaining the trust of consumers is essential for almost every company. While migrating applications to cloud environments enables dramatic cost savings, as
well as broad access for users, it also means critical customer data now resides outside the ownership and control of the organization. Without active protection
of the data entering the application, the potential risks associated with this loss of control and trust are severe.
In order to realize the economic benefits of cloud-based applications but also address the necessary security concerns, organizations must satisfy several core
requirements:
Transparent application integration – Ability to encrypt data in its own application development environment with simple integration that does not require a
cryptography expert.
Centralized control and management –Centralized data control that minimizes operational costs and provides the capabilities required for auditing and separating
administrative duties.
Flexible and agile deployment –Capabilities that enable flexible data protection controls when migrating to different vendors.
SafeNet’s Data Protection solutions, and the ability to encrypt, manage, and secure data on a large scale, helps companies maintain the trust of customers as
they migrate to the cloud.
softwaremag.com
SafeNet - 6/14/2012
SafeNet Inc. Announces Departure of Chief Financial Officer
SafeNet Inc. today announced that Chief Financial Officer Charles Neral, 53, has decided to leave the company to pursue another opportunity. His last day as
Chief Financial Officer will be June 30, 2012.
Chris Fedde said, “On behalf of all of us at SafeNet, I want to thank Charles for his contributions to our company. He’s played an integral role in rebuilding the
company’s financial organization, fortifying the company’s balance sheet and instilling the financial disciplines across the organization that exists today.”
The company also announced that Greg Repas, 47, currently Chief Accounting Officer and a twenty five year finance veteran, will serve as interim Chief
Financial Officer while the company conducts an external search for a new Chief Financial Officer.
As Interim Chief Financial Officer, Mr. Repas will now oversee all corporate finance functions including controllership, corporate financial planning and analysis,
treasury, tax and risk management. Prior to joining SafeNet in October 2010, he served as Vice President and Assistant Controller at Black & Decker. Mr.
Repas graduated from Pennsylvania State University with a Bachelor of Science degree in accounting.
Commenting on his time with the company, Mr. Neral said, “I’m proud of the progress that we’ve made over the past few years and continue to be excited about
SafeNet’s potential. I am confident that the talented team at SafeNet will continue to execute against the company’s long-term priorities. I wish the company
every success in the future.”
softwaremag.com
SafeNet - 6/3/2012
Frost & Sullivan Honors SafeNet’s Cloud-based Authentication Service with Innovation Award
Today, Frost & Sullivan recognized SafeNet, Inc., a leading global data protection company, with its New Product Innovation Award, Europe, for Cloud-based
Authentication Services. SafeNet received the accolade for the development of BlackShield Cloud, which delivers an innovative, flexible, and cost-effective
cloud architecture with both an on-premise and authentication-as-a-service solution.
“With the rise of online crime, identity theft, and system attacks, enterprises are under increased pressure to implement robust security protocols, while ensuring
the solution deployed is scalable and can grow with business needs,” said Charanya Balasubramanian,
Senior Analyst at Frost & Sullivan. “SafeNet offers extensive flexibility to customers by supporting a vast token range and delivering a comprehensive self-service
portal that reduces management costs. In addition, ease of deployment and compliance to several industry regulations makes it a preferred choice for global
customers across industries. The breadth and delivery of SafeNet’s authentication portfolio helps customers meet the demands induced by increasing mobility
and localization. By accommodating emerging trends in security, we expect SafeNet to gain a strong foothold in the Cloud-based Authentication Service
segment.”
Below is the criterion and commentary that Frost & Sullivan utilized when evaluating SafeNet BlackShield Cloud against its competitors:
Innovation: BlackShield Cloud positions itself uniquely by bringing together cloud, token-less mechanisms, and automation to meet the changing requirements of
authentication. Moreover, BlackShield Cloud offers an effective logon mechanism for any token type across all resources accessed by users from their internal
enterprise network through public and private cloud applications.
Leading-Edge Technology: The technical excellence of the SafeNet team is reflected by the ability to deliver one time passwords on-demand in a Web-based
business environment with great level of flexibility without compromising on security.The BlackShield Cloud is backed by multi- tenant architecture to support
comprehensive management of multiple accounts.
Value Added Features / Benefits: BlackShield Cloud offers the flexibility and scalability required to support the growing mobile workforce—the solution offers
specific APIs that permit integration into enterprise workflows from mobile devices and complies with different security standards, including Sarbanes Oxley Act
(SOX), Payment Card Industry (PCI), and Health Insurance Portability and Accountability Act (HIPAA).
Customer ROI: By offering a simple price-per-user model, BlackShield Cloud protects customers from known, hidden, and extra costs. In addition, the availability
of a ready-to-go full virtual authentication server hosted from a cloud, averts the need for additional infrastructure or ongoing infrastructure costs.
Customer Acquisition/Penetration Potential: As the need for business-to-business authentication is becoming more common, SafeNet has rightly identified this
opportunity and has devised specific channel partner strategies to accelerate growth across multiple areas.
“Frost & Sullivan’s recognition of SafeNet’s innovation in cloud-based authentication service is further validation of our strategy,” said Jason Hart, Vice President
of Cloud Solutions at SafeNet. “The emergence of authentication as a service has created an opportunity for us to help our customers easily and securely
migrate their data from the enterprise to both private and public clouds in a cost-effective manner. Importantly, the breadth of our market-leading authentication
solutions and the scalability of our BlackShield platform will enable our customers to stay ahead of the rapidly changing security landscape, as well as meet the
increasing demands of emerging security regulations.”
Frost & SullivanBest Practices Awardsrecognize companies in a variety of regional and global markets for demonstrating outstanding achievement and superior
performance in areas such as leadership, technological innovation, customer service, and strategic product development. Industry analysts compare market
participants and measure performance through in-depth interviews, analysis, and extensive secondary research in order to identify best practices in the industry.
softwaremag.com
SafeNet - 5/24/2012
SafeNet’s Luna EFT Hardware Security Module Achieves PCI HSM Compliance
Retail and Financial Service Institutions Can Leverage Luna EFT HSMs to Ensure Security and Compliance during Payment Card Transactions
SafeNet, Inc., a global leader in data protection, today announced that its Luna EFT Hardware Security Module (HSM) has achieved PCI HSM compliance.
SafeNet received this certification in advance of the compliance mandate being issued by the Payment Card Industry Security Standards Council (PCI SSC),
which requires all financial and retail organizations to meet Level 1-12 certification standards set by the PCI.
Luna EFT is a high-performance, tamper-resistant solution that protects cryptographic keys and other sensitive information, such as customer PINs and
cardholder data. By achieving PCI compliance, SafeNet’s Luna EFT HSMs can not only assist them in meeting the basic compliance requirements but also
leverage the technology to secure other key assets of their business.
News Summary:
The SafeNet Luna EFT HSM has received PCI HSM compliance certification from the Payment Card Industry Security Standards Council (PCI SSC). Luna EFT
has also achieved FIPS 140-2 Level 3 certification.
SafeNet is a pioneer in HSM technology, and has been delivering secure HSMs to the market since 1994 and has over 25 years experience in securing
Electronic Funds Transfer (EFT) payment systems.
The PCI SSC is the governing body established by the major card companies (American Express, Discover, JCB, MasterCard, and Visa) to improve the
protection of cardholder information across the global payments network and at merchant facilities.
SafeNet Executive Comment:
“PCI compliance is the most prescriptive security regulation currently being enforced, but even it doesn’t go far enough – yet. We applaud the PCI SSC for its
progressive stance on payment industry regulations and call on them to quickly enact the regulation requiring the use of PCI-compliant HSMs immediately. This is
the most secure way to protect data, and the technology is available and certified compliant today.”
“For years, both financial service and retail companies have been at the forefront of security, largely due to the compliance mandates by organizations such as
PCI SSC. SafeNet’s Luna EFT HSMs have been trusted by the world’s largest financial services companies due to their scalability, flexibility, and proven track
record of securing high-volume transactions across complex global environments. Achieving this next level of certification underscores SafeNet’s philosophy
that simple compliance in today’s environment is no longer sufficient. Our data protection portfolio helps companies achieve and go beyond compliance, and
attach layers of security to what matters the most—the data—whether it is in a physical, virtual, or cloud environment.” --Tsion Gonen, chief strategy and marketing
officer at SafeNet.
Key Benefits for Customers:
SafeNet’s Luna EFT is an advanced, user-friendly, and secure HSM. The network-attached HSM offers secure PIN and card processing, message
authentication, comprehensive key management, and general-purpose cryptographic processing. With a highly intuitive interface, flexible key management
(including support for HSM-stored and host-stored keys, or a mix of both), and in-field upgradability, Luna EFT provides deployment flexibility at a lower total cost
of ownership, and with ease-of-upgrade migration.
softwaremag.com
SafeNet - 4/3/2012
SafeNet Thinks Outside the ‘Black Box’ with Industry’s First White Box Cryptography Software Protection Solution
Sentinel Portfolio of Software Licensing and Protection Solutions Hardened against Reverse Engineering, Tampering, and Automated Attacks in Hostile
Environments
SafeNet, Inc., a global leader in data protection, today announced the industry’s first software protection solution to include white box cryptography. The
SafeNet Sentinel® portfolio of software licensing and protection solutions now includes new functionality that protects security algorithms from attacks in “white
box” environments, where attackers traditionally have been able to freely observe and alter dynamic code execution and internal algorithm details at will.
Traditionally, in software protection, cryptography has been virtually performed directly in front of the eyes of the attacker. There hasn’t been a black box
protecting thesecret keys and as such, the application’s execution can be monitored step by step with all accessed data is visible. In order to better secure and
keep the secret keys out of harm’s way, a different approach needs to be taken.
“Our white box solution assumes that attackers have full visibility. It replaces the exposed algorithm and encryption keys with special application libraries that
minimize the attack surface,” said Michael Zunke, chief technology officer, Software Monetization Solutions, SafeNet. “This methodology ensures that the
protected keys remains hidden from hackers and are less susceptible to reconstruction during attacks.”
With SafeNet’s white box solution, communication between protected applications and hardware tokens is fully encrypted, ensuring that the data passing
through the secure channel cannot be replayed. Unlike traditional solutions that simply aim to hide encryption keys, SafeNet’s implementation is centered on
white box cryptography, which assumes that attackers can trace protected applications and run-time environments in search of encryption keys. With this
assumption as part of the design, the algorithm and encryption keys are replaced with proprietary API (Application Programming Interface) libraries that implement
the same encryption but embed the encryption key as part of the algorithm in a way that ensures it is never present in memory and, therefore, cannot be
extracted. Each application library is uniquely generated and obfuscated for each specific software vendor customer, making generic hacks virtually impossible
to execute.
“Given the sophistication and level of today’s security breaches, it’s imperative that software vendors pay specific attention to software protection throughout the
design and implementation stages, and continuously enhance it as part of the product lifecycle,” continued Zunke. “SafeNet’s software protection solutions
allow ISVs to easily integrate a wide range of security measures, including white box cryptography, as part of their design directly at the source code level,
further strengthening the overall protection scheme for the software vendor.”
White Box Cryptography Webinar
To learn more about white box cryptography, please join SafeNet software security expert, Mark Horvath as he presents on “Best Practices in Software
Protection: White Box Cryptography.” In this session, Mark will discuss how white box cryptography works, and the superior level of security that this
methodology provides when compared to traditional secure channel communications.
About SafeNet’s Licensing Solutions
SafeNet offers the industry’s strongest, most flexible software licensing and management solutions. The Sentinel portfolio provides award-winning IP protection,
software licensing, and entitlement management technology that minimizes software piracy risks and enables flexible licensing, pricing, and packaging models
that help software developers create new revenue opportunities and improve customer satisfaction.
softwaremag.com
SafeNet - 1/17/2012
SafeNet Aids Fight Against eBanking Fraud with New Optical Signing
Device
SafeNet, Inc., a global leader in data protection, announced today the availability of a new identity and transaction protection solution that addresses
multiple levels of risk associated with online banking and trading transactions. SafeNet’s new eToken 3500 is an innovative electronic signing and
strong authentication token-based device that will enable financial services organizations to successfully achieve the right balance of risk mitigation,
cost-effectiveness, and usability when securing eBanking applications.
The SafeNet eToken 3500 uses an optical sensor to read financial transaction data from a Web browser, generating a unique electronic signature that
validates each transaction, reducing threats such as Man-in-the-Browser (MitB) and Man-in-the-Middle (MitM), in which hackers hijack legitimate user
identities during a transaction and redirect funds. Additionally, the optical features of the device scan the transaction data automatically, eliminating the
need for manual inputs, which simplify the electronic signing process for the user while reducing errors.
“Malware-based attacks against bank customers and employees are levying severe reputational and financial damage on their victims,” says Avivah Litan,
vice president and distinguished analyst, Gartner Research. “Fighting these and future types of attacks requires a layered fraud prevention approach.”
Further, Gartner recommends that organizations “deploy both secure browsing and out-of-band or dedicated hardware transaction verification for
high-risk transactions as complementary measures to existing authentication methods.”1
Financial institutions have to manage heavy volumes of high-risk transactions on a daily basis. The rising tide of cyber threats, as well as increased
regulatory pressures, has necessitated a new approach to online transaction protection. Additional validation, to ensure that each transaction is
authorized by a legitimate customer, can contribute significantly to reducing online banking fraud. By combining secure electronic transaction
signing with one-time password (OTP) strong authentication, the SafeNet eToken 3500 eliminates the risk of transaction tampering, as well as
forgotten, stolen, or hacked passwords, and mitigates the risk of identity theft. It also helps organizations comply with privacy and data protection
regulations.
The eToken 3500 allows customers to:
Generate an electronic signature for transactions, ensuring their integrity
Reduce the chances of financial fraud resulting from MitM and MitB threats
Automatically scan encrypted transaction details, preventing typing errors
Maintain secure remote access to networks, applications, and Web-based services
“Forward-thinking financial services institutions need to approach authentication in a way that goes beyond simply verifying the identity of the user,
which can be faked. To combat fraud and manage risk, customers need transaction protection and signing solutions that ensure the transaction
itself is validated,” said Andrew Young, vice president of Authentication, SafeNet. “SafeNet’s portfolio of identity and transaction solutions, including
the eToken 3500, is purpose-built to address the unique risk requirements of financial services, delivering the appropriate levels of protection during
the transaction lifecycle without impeding the customer experience.”
How it Works
The SafeNet eToken 3500 generates an OTP when a user presses a button on the token. It creates a unique electronic signature by reading the
encrypted details of a financial transaction from a computer screen. This functionality is enabled by an optical sensor that is built into the token. The
user holds the token up against the screen, the token reads the transaction details, and then generates the electronic signature. The user then keys
the signature into the browser and, in so doing, confirms the transaction is valid.
By combining secure electronic transaction signing with OTP strong authentication, the SafeNet eToken 3500 eliminates the risk of transaction
tampering, as well as forgotten, stolen, or hacked passwords, mitigating the risk of identity theft. It also helps organizations comply with privacy and
data protection regulations.
softwaremag.com
|
|
|
