Skip to main content

Cost, Risk, and Compliance

Up to this day, the processes that are used to generate, deploy and configure SSH user keys have been manual and unmanaged. As the complexity of the enterprise ICT environment and the number of key pairs increases, and since user keys do not provide reliable information about the trust relationships they enable, security managers lose visibility into who has access to which SSH protected servers. This problem is highlighted when there is need to revoke access to servers due to organizational changes, employee departures, or mergers and acquisitions.

As a result, corporations are burdened by significant overhead from the management of their SSH user- key setups, are subject to increased risk from the lack of key renewals and removals, and face pressure from compliance initiatives around the best practices of user-key management.

PrivX Key Manager can help you reduce the costs and risks brought by an unmanaged SSH key environment, while simultaneously helping you meet and exceed the prevalent compliance standards of your industry.

Key Manager's flexible architecture offers a scalable solution to suit the needs of any ICT environment. Key Manager can manage many server platforms without the use of agent programs, which eliminates the cost and trouble of maintaining agents or other applications. The PrivX Key Manager is available as a software installation.

Key Manager's centralized-management functionality helps you reduce management overhead, unify processes for managing SSH keys, and rapidly respond to the changing requirements of your ICT environment. Combined with the increased visibility Key Manager provides into your SSH key environment, you can properly control user access to servers, and proper termination of access. This allows you to effectively increase compliance to widely used data security regulations such as PCI-DSS, SOX, FISMA, and HIPAA.

The solutions created by SSH Communications Security Corporation save a typical Fortune 1000 organization $1 to $3 million per year in overhead costs and free their security teams to focus on higher- priority issues, while also reducing the risk of unauthorized access to critical business information and increasing compliance with security requirements.