cfo-as logo
Story image

75% of DevOps professionals say certificate issuance policies slow them down

16 Dec 2019

Machine identity protection provider Venafi has announced the results of a survey on digital certificate security policies and practices in DevOps environments.

The survey evaluated the opinions of 108 professionals attending the DevOps Enterprise Summit 2019 in Las Vegas, Nevada.

According to Venafi’s survey, 75% of DevOps professionals are concerned that policies for issuing certificates slow down development, and over a third (39%) believe developers should be able to circumvent these policies to meet service level agreements.

In addition, less than half (48%) of those surveyed believe developers in their organisation always request certificates through the security team-approved methods and channels.

Cryptographic keys and certificates serve as machine identities and enable authentication and secure communication for applications, service containers and APIs on enterprise networks, the internet and in cloud environments.

The use of weak or unauthorised keys and certificates can significantly increase security risks, particularly in cloud environments.

Developers use insecure machine identities, including certificates from unauthorised certificate authorities (CAs) and self-signed or wild card certificates, because corporate certificate issuance processes are seen as too cumbersome.

Unfortunately, this leaves security teams in the dark and increases organisational risk, especially if key and certificate vulnerabilities or errors enter production environments.

DevOps is all about speed, but this survey illustrates that developers often find security policies slow, says Venafi security strategy and threat intelligence vice president Kevin Bocek.

Unfortunately, security professionals are often unaware of the risks DevOps processes bring to their organisations.

Ultimately, security teams need to make it more straightforward for developers to use machine identities protecting them must be easier and faster than it is to circumvent policy, otherwise these problems will continue to grow exponentially.

Organisations that rely on DevOps processes require visibility, intelligence and automation to protect their machine identities.

About Venafi

Venafi is the cybersecurity market leader and inventor of machine identity protection, securing machine-to-machine connections and communications.

Venafi protects machine identity types by orchestrating cryptographic keys and digital certificates for SSL/TLS, IoT, code signing, mobile and SSH.

Story image
Stealth Solution helps Korean firms improve their cryptographic security standards
Now, more than ever, security is at the forefront of our increasingly digitized world – one that is quickly moving toward everything encrypted, signed, and authenticated.More
Story image
ManageEngine recognised by Forrester for PIM and Chatbots
The company was named as one of the “providers that matter most” in two reports for its PAM360 and Zia chatbot products.More
Story image
Kount and Snowflake partner to empower businesses with customer insights
The joint new product, called Data on Demand, is the industry’s first private data warehouse with insights from Kount’s Identity Trust Global Network, powered by advanced artificial intelligence and machine learning. More
Story image
Pure expands as-a-service offerings with focus on transparency
It aims to provide the economic benefits of cloud, along with those of Evergreen architecture including non-disruptive expansions and maintenance. More
Story image
Workday releases its Q3 2021 financial results
As a result of the strong showing, the company says it raising its fiscal 2021 subscription revenue guidance to a range of US$3.773 billion to $3.775 billion.More
Story image
Why automating the finance function is critical for future growth
As well as continually struggling with tedious workflows and manual processing, many finance professionals are still finding it a challenge to complete their month-end close. This is where software can help, writes BlackLine regional vice president for A/NZ Claudia Pirko.More