Keyfactor unveils certificate risk management solution with enhanced visibility

Internet of things identity platform provider Keyfactor Inc. today announced the upcoming launch of Command Risk Intelligence, a new capability for managing certificate risks.

The new capability is being pitched as a world first, with unmatched visibility into every certificate in use. Users will be able to use the capability to identify and mitigate certificate-related risks before they disrupt business operations.

In developing the new capability, Keyfactor discovered that the most common certificate risks to an organization’s online presence include certificates with long lifespans, with one in every 13 certificates having lifespans of more than two years. Risks also include certificates without key usage, which constitute one in every 25 certificates, as well as certificates with negative serial numbers — one in every 27 certificates — and unsanctioned domain usage.

Keyfactor notes that certificates without key usage are a particularly prevalent certificate risk, as without a key usage field, anyone holding the private key can be trusted. Domain usage is also a major concern, as unsanctioned certificates could indicate the presence of shadow information technology or could be used in phishing attacks.

Command Risk Intelligence addresses these concerns by providing security teams with enhanced visibility, risk insights and actionable intelligence to mitigate certificate-related threats before they disrupt business operations. The capability integrates with the world’s largest internet certificate database to give teams visibility of all known and unknown certificates, ensuring a more comprehensive security posture.

The solution also delivers dynamic risk scores with detailed insights, allowing organizations to track and prioritize remediation efforts over time. Teams can efficiently address certificate vulnerabilities using integrated search and automation capabilities directly from Keyfactor Command, streamlining operations and reinforcing digital trust.

“Certificates are the backbone of trust, but only when issued, managed, secured and governed properly,” said CTO Ted Shorter. “Keyfactor’s strong certificate discovery capabilities manage large amounts of certificate data, empowering organizations with incredible visibility.”

Keyfactor is a venture capital-backed startup that has raised $218 million over eight rounds, according to Tracxn. Investors in the company include Sixth Street Partners, Insight Partners LP, AGC Partners and Plymouth Growth Partners.

Image: Keyfactor