Secure Shell keys are routinely untracked, unmanaged and poorly secured in financial service organizations even though they provide the highest levels of administrative access in those organizations, according to new research.
Salt Lake City-based Venafi recently conducted a study that evaluated how finservs manage and implement SSH, which are network protocols for securing remote connections between computers, as well as providing strong authentication. One hundred IT security professionals from the financial services industry participated in the study, which revealed a widespread lack of SSH security controls.
For example, 69% of respondents from the financial services industry admit they do not actively rotate keys, even when an administrator leaves their organization. This allows former employees to have ongoing privileged access to critical and sensitive systems.
Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.
Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking credit union news and analysis, on-site and via our newsletters and custom alerts
- Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
Roy Urrico
Roy W. Urrico specializes in articles about financial technology and services for Credit Union Times, as well as ghostwriting, copywriting, and case studies. Also: writer/editor of a semi-annual newsletter for Association for Financial Technology since 1997 and history projects funded by the U.S Interior Department, National Park Service and Warren County (N.Y.).
