The Keeper team had an amazing time at the 2023 Black Hat security conference in Las Vegas. We met with partners, prospects, friends, vendors, and of course, our incredible customers. Over the span of two days we talked to thousands of people and collected valuable data on a number of critical topics. In fact, we generated a mountain of data about what cybersecurity professionals want from password and privileged access management solutions. This type of voice-of-market research is integrated into everything we do, from product enhancements to new launches and announcements.
This year, there was a significant emphasis on integrations, security and privileged account management, with several common questions standing out. Here are the top questions we received at Black Hat 2023.
What Identity and Access Management (IAM) Solutions Does Keeper Integrate With?
Technical users have a tendency to fall in love with the products they use and want to keep using them for as long as possible. Whether it be Github Actions, Jenkins or Docker, DevOps engineers far and away wanted to know if the tools they currently use would still be available if they implement Keeper Secrets Manager to eliminate the secrets sprawl so many organizations struggle with.
Keeper Secrets Manager (KSM) is a fully-managed, cloud-native, zero-knowledge platform for securing infrastructure secrets. KSM integrates with all popular CI/CD systems, provides SDKs for all major programming languages and supports any type of machine to protect infrastructure.
Beyond CI/CD, Keeper seamlessly integrates with nearly every major solution for SSO, SIEM, MFA and more.
Gain visibility into your entire organization by integrating your existing solutions with Keeper.
How Does Keeper Differ From Legacy PAM Solutions Like CyberArk?
KeeperPAM is a next-gen privileged account management solution designed directly from the feedback we receive from users and IT leaders. 87% of respondents in a survey conducted this year stated they wanted a “pared down” version of PAM that is easier to deploy and use.
This is where Keeper shines. With the features most commonly requested and none of the bloatware that comes with traditional enterprise on-premise PAM solutions, KeeperPAM is less expensive and deploys in minutes, not months. It’s simple enough to use that administrators can deploy it to everyone with privileged access in an organization– not just the IT team. This enhances security and reduces the chance of failing an audit.
CyberArk has traditionally been deployed on-premises and only in recent years has offered cloud options. KeeperPAM was developed as a cloud-native solution to provide a single, user-friendly UI for password and secrets management.
CyberArk users have reported incredibly complex pricing and a demand for professional services to get the solution running or upgraded. KeeperPAM is designed to scale with your organization as your needs grow and change. There are no implementation costs, giving you access to world-class PAM functionality at a fraction of the price.
How Is Keeper’s Encryption Model Different From Other PAM/Password Management Vendors?
The Keeper Vault utilizes a multi-layer encryption model in which each individual credential gets its own 256-bit AES key. Keeper’s login flow has a device approval step and prompts for Multi-Factor Authentication (MFA) before asking for the master password, which eliminates the risk of Man-in-the-Middle attacks. Finally, Keeper’s implementation of PBKDF2 utilizes 1M iterations, well over the NIST standard of 600k.
In comparison, LastPass’ architecture only supports encryption at the vault level – making user information more vulnerable to cyber threats.
Keeper has the longest-standing SOC2 compliance and ISO 27001 certification in the industry, meaning Keeper has consistently demonstrated compliance with 114 information security controls and has an Information Security Management System (ISMS) that meets the internationally-recognized ISO standard.
Is Keeper Authorized/Certified for Government Use?
Yes! Keeper is FedRAMP and StateRAMP Authorized, along with holding many more certifications.
Keeper has undergone a rigorous process to become FedRAMP and StateRAMP Authorized, which allows Keeper solutions to be used by federal agencies and state governments, as well as organizations that work closely with the government.
I’m Using a Different Password Management Solution That I Don’t Love. Is it Complicated To Switch?
Not at all. Everything about Keeper has been designed to be easy to use while providing the most secure solution possible. Keeper has simple import guides to walk you through the process, step by step, and if you have any additional questions, the Keeper support team is here to help.