Offers developers flexibility and security by eliminating hard-coded passwords
PHOENIX, September 21, 2016 –
BeyondTrust today announced a free, public API that allows stored credentials to be retrieved automatically from PowerBroker Password Safe. As the leading cyber security company dedicated to preventing privilege misuse and stopping unauthorized access, BeyondTrust designed the API to address the shortcomings of single sign-on, simplify developer access, and offer secure credential management. Since legitimate user credentials were used in most data breaches in 2015, with some 63 percent of them using weak, default, or stolen passwords (Verizon), it has never been more important for organizations to control access to their sensitive systems.
If credentials are retrieved automatically and securely from the PowerBroker Password Safe API, commercial application developers would never be required to enter a username and password for connectivity, and end users, like database administrators, never need administrator rights to access a database. This capability improves system security while enabling greater business agility.
Organizations and application developers will realize multiple benefits in using the PowerBroker Password Safe API:
- Secure credential management: Instead of entering static credentials, developers call on the PowerBroker Password Safe API to retrieve the latest credentials for the user, application, infrastructure, cloud solution, or database to authenticate and then release the credentials at the end of the session. This triggers automatic randomized cycling of the password. The end user is never exposed to the username or password. All authentication is performed silently behind the scenes with complete activity auditing, if desired.
- Simplified developer access: Improve the agility and responsiveness of IT by never requiring the entry of a username and password for connectivity to create custom applications. End users, like database administrators, never need administrator credentials to access a database if the tools retrieve stored credentials automatically. Management tools for services, remote access, and infrastructure automatically recognize the logged on user and the asset they are on, and seamlessly request and pass credentials for the application.
- Protection from SSO hacks: Since credentials can be passed within the application itself, directly from Password Safe, IT can secure runtime and avoid hacking techniques like pass-the-hash and keystroke logging, making this approach far more secure than single sign-on (SSO).
- Sample code to get started quickly: To enable developers to access the API and help secure their applications, BeyondTrust has provided sample code in the following formats: C# (.NET), PowerShell, Ruby, Python, Java, and Bash shell.
“In our dedication to preventing privilege misuse and stopping unauthorized access, BeyondTrust recognizes the importance of safeguarding sign-on credentials as the next step in secure authentication,” said Morey Haber, Vice President of Technology at BeyondTrust. “With this free, public API, we are proud to offer the first solution of its kind to developers, customers, and partners.”
The free API for PowerBroker Password Safe is available today. Organizations interested in utilizing the free API should first register with the BeyondTrust Technology Alliance Program
. Once registered, they will receive access to code samples, NFR licenses, and access to PowerBroker Password Safe. Once integration is completed, BeyondTrust will review and document or certify the integrated solution.
BeyondTrust is a global information security software company that helps organizations prevent cyber attacks and unauthorized data access due to privilege abuse. Our solutions give you the visibility to confidently reduce risks and the control to take proactive, informed action against data breach threats. And because threats can come from anywhere, we built a platform
that unifies the most effective technologies for addressing both internal and external risk: Privileged Access Management
and Vulnerability Management
. Our solutions grow with your needs, making sure you maintain control no matter where your company goes. BeyondTrust’s security solutions are trusted by over 4,000 customers worldwide, including half of the Fortune 100. To learn more about BeyondTrust, please visit www.beyondtrust.com.