Even with conventional password management products, powerful local account passwords can still be compromised via shoulder surfing, key loggers, social engineering, software debuggers, or similar attacks. In order to effectively protect privileged account passwords, an elevated level of security must be employed.
Random Password Manager was the first privileged identity management solution to utilize hardware-based encryption to securely store high value account credentials, and protect them from unauthorized access.
Secure Password Storage
By integrating with any PKCS #11 hardware device, Random Password Manager can store the current local password for every managed system inside a tamper-resistant hardware environment. There are no decryption keys stored in memory, so there is no risk of software debuggers locating the keys and accessing the protected data.
Hardware-based encryption provides Random Password Manager with a secure key management and encryption subsystem independently validated to FIPS 140-2 levels 2 and 3 – a de-facto security benchmark for cryptographic processing. This technology has been an industry best practice for years in the federal government, military, intelligence, and financial communities due to the ease with which software-only encryption methods can be compromised.
For more information on how Random Password Manager can help secure your environment, contact an account manager.
