Story image

Study: 80% of enterprises struggle to protect machine identities

Venafi announced the results of 'Securing The Enterprise With Machine Identity Protection', a June 2018 commissioned study conducted by Forrester Consulting on behalf of Venafi. 

The study focused on enterprise machine identity protection challenges and included responses from 350 senior IT security professionals.

Key findings from the study reveal that 96% of companies believe that effective protection of machine and human identities are equally important to the long-term security and viability of their companies. 

However, 80% of respondents struggle with the delivery of important machine identity protection capabilities.

Additional findings from the study include: 

Nearly half (40%) believe protecting machine identities and human identities will be equally important to their organisations over the next 12 to 24 months, while nearly as many (43%) think machine identity protection will be more important.

Seventy per cent admit they are tracking fewer than half of the most common types of machine identities found on their networks. When asked which specific machine identities they track:

  • Just 56% say cloud platform instance machine identities.
  • Only 49% say mobile device machine identities.
  • Only 49% say physical server machine identities.
  • Only 29% say SSH keys.
  • Only a quarter (25%) say machine identities of microservices and containers.

Sixty-one per cent say their biggest concern regarding poor machine identity protection management is internal data theft or loss. 

Managing user and machine identities and privileged access to business data and applications is an enormous undertaking that has serious security ramifications. 

Traditionally, the focus for identity and access management (IAM) programs has been people-centric, but recent increases in the number of machines on enterprise networks, shifts in technology and new computing capabilities have created a set of challenges that require an increased focus on protecting machine identities.

Hillstone CTO's 2019 security predictions
Hillstone Networks CTO Tim Liu shares what key developments could be expected in the areas of security compliance, cloud, security, AI and IoT.
Can it be trusted? Huawei’s founder speaks out
Ren Zhengfei spoke candidly in a recent media roundtable about security, 5G, his daughter’s detainment, the USA, and the West’s perception of Huawei.
Oracle Java Card update boosts security for IoT devices
"Java Card 3.1 is very significant to the Internet of Things, bringing interoperability, security and flexibility to a fast-growing market currently lacking high-security and flexible edge security solutions."
Sophos hires ex-McAfee SVP Gavin Struther
After 16 years as the APAC senior vice president and president for McAfee, Struthers is now heading the APJ arm of Sophos.
Half of companies unable to detect IoT device breaches
A Gemalto study also shows that the of blockchain technology to help secure IoT data, services and devices has doubled in a year.
Huawei founder publically denies spying allegations
“After all the evidence is made public, we will rely on the justice system.”
Malware downloader on the rise in Check Point’s latest Threat Index
Organisations continue to be targeted by cryptominers, despite an overall drop in value across all cryptocurrencies in 2018.
IoT breaches: Nearly half of businesses still can’t detect them
The Internet of Thing’s (IoT’s) rapid rise to prominence may have compromised its security, if a new report from Gemalto is anything to go by.