Symantec cloud-based service seeks out 'rogue certificates'

The Symantec Certificate Intelligence Center keeps track of SSL server certificates used by an organization

Symantec this week introduced what it calls the Symantec Certificate Intelligence Center, a cloud-based service that works with an on-premises software component to keep track of SSL server certificates used by an organization.

"Every SSL certificate comes with a shelf life, as they expire in one, two or three years," says Amar Doshi, Symantec senior manager, product management. Symantec Certificate Intelligence Center lets IT managers track both public Web-facing and internally-used certificates in order to act before these certificates expire. The service is similar to one offered by competitor Venafi, he says.

[ The Web browser is your portal to the world -- as well as the conduit that lets in many security threats. InfoWorld's expert contributors show you how to secure your Web browsers in this "Web Browser Security Deep Dive" PDF guide. ]

[ See also: HP's "Secure Boardroom" gives execs online view of organization's security posture]
In addition, Symantec's cloud-based service, working in conjunction with the on-premises component, which is available based on Red Hat Linux or VMware-based virtual appliance, can scan to detect so-called "rogue certificates," Doshi says.

Rogue certificates have been discovered in corporate networks because someone at a company went and got them from a certificate authority that was not the usual source, or sometimes this has even been done maliciously. The bottom line is the certificate isn't officially recorded as in use by the business. The certificate-scanning service would be able to seek them out and report back on them, he says.

Symantec last year acquired the VeriSign trust services group for over $1 billion. The Symantec Certificate Intelligence Center service, now in beta, is the first new major product/service roll-out since the time of the acquisition.

nb : infoworld