company presentation ssh communications security Mika Lauhde VP, Government Relations and Business Development

Transcription

1 company presentation ssh communications security Mika Lauhde VP, Government Relations and Business Development

2 Cyber Security EU ENISA Europol working group Management member of Leuven University European Crypto Task Force Member of Finnish Government Cyber Security working group Member of ENISA (European Network and Information Security Agency) PSG (Part of the European Cyber Security Strategy plan 2013) Founding Member and Board Member of TDL (Trust in Digital Life) (Part of the European Cyber Security Strategy plan 2013) Member of Finnish government ICT security advisory board Member of EU government security advisory board RISEPTIS, reporting to Commissioner Reding) Member of UK government critical infrastructure protection group CPNI

3 we invented the SSH protocol

4 enables secure connections in internet

5 our solutions Tectia SSH secure shell data-in-transit encryption automated FTP-to-SFTP conversion secure mainframe connectivity CryptoAuditor encrypted channel monitoring & DLP enablement privileged access management security intelligence for encrypted networks Universal Key Manager automated discovery access controls centralized management

6 quick facts Inventors of the SSH protocol Headquarters in Helsinki Listed: NASDAQ OMX Helsinki (SSH1V) 3,000 customers including 6 of the 10 largest US banks

7 the company we keep finance retail government utilities & transport G2000 / enterprise

8 secure shell: the essentials ssh connects two places in an internet secure way by encrypting the TCP/IP traffic between two end points (client/server). User (Tectia Client or Tectia ConnectSecure) Network Host (Tectia Server) ensures that information remains confidential, unmodified and that sender and receiver are who they claim to be.

9 SSH main products: SSH protocol was just a starting point dministrator and end-used strong authentication access control connection control dministrator unix, Linux server and network equipments access control, audit and content control system dministration and application control unneling of the control and application data unix, Linux server and network equipment encryption key management and risk management encryption of control commands, information transfer,

10 reality is more than one connection

11 reality is more than one unsecure connection unsecured management of secured tunneling? monitoring of internal and external users

12 SSH s contribution for standards

13 universal ssh key manager: management & governance Discover Monitor Lockdown Remediate Manage hosts, users, SSH keys and trustrelationships logins and key usage unauthorized operations relocate keys and lock down servers remove obsolete and policy violating keys automate and integrate life cycle management of your SSH

14 CryptoAuditor : content aware access management deep protocol inspection (SSH/SFTP, RDP, sub-protocols) full session visibility and recording real time session indexing, alerts and enforcement layered defense enablement (DLP, IPS, AV) distributed, transparent deployment and operation Inline enforcement DLP, IPS, AV Visibility & Prevention Access Policies

15 solution to see through encrypted tunnels SSH CryptoAuditor - privileged user access control and audit on-the-wire : no sign-in portals no client or host agents to control access or gather audit trail Optical Character Recognition (OCR) to index and inspect session activities audiovisual audit trail of administrative sessions On-the-fly (invisible) access control

16 SSH and Jolla secure phone Technical security must not compromise the user experience, or the terminal won t be used sufficiently Secure messaging can be integrated as part of normal messaging routines User can access Android app ecosystem via the sandboxed Alien Dalvik virtual machine on Sailfish OS Sailfish OS UI is based on a next generation, intuitive gesture UI with true live multitasking

17 Crypto and Internet of Things Industrie Smart Service Welt When huge amount of intelligent devices is connected to internet It needs somebody to Protect the communication Manage the protection Audit and force policies European commission IOT Security working group

18 SSH and Aalto Crypto asset needing long term commitment Cryptology Architectural understanding Implementation skills Support Quantum computing?? IoT???

19 Thank you! Mika Lauhde VP, Government Relations and Business Development