Digital Element | October 03, 2022
Digital Element, the global IP geolocation and audience insights leader, has announced a suite of updates to Nodify™, the industry’s first and most advanced threat intelligence solution designed to help security professionals respond to the recent surge in the VPN market. While other solutions on the market claim to offer VPN usage insights, Nodify is the only offering that provides a granular look into which VPNs are being used across all devices to weed out bad actors and allow legitimate services to continue.
As tech providers expand their offerings and provide new safety features to users, Nodify gives organisations an unmatched level of detail around VPN traffic, usage, and intent, enabling cybersecurity teams to understand the level of threat such traffic poses and set policies around that traffic.
“With the growing interest in personal privacy on the web, we’ve seen many consumers utilising VPNs for legitimate reasons, but now more and more people are leveraging the anonymity around VPNs to cloak their location and bypass geographic boundaries set by today’s leading service providers, Security professionals need to understand the nuances around VPN usage on their platforms. For example, users who have opted to hide their personal information may not necessarily be trying to torrent illegal data from a remote location. Determining who is granted and denied access depends entirely on the granular data available in Nodify.”
Jerrod Stoller, President of Digital Envoy, parent company of Digital Element
Following the launch of Nodify in April 2022, Digital Element has introduced a new suite of updates, keeping the product at the forefront of VPN data reporting with the most extensive VPN detection system available. Notable updates include:
Higher Frequency: With proxy IPS and VPNs changing rapidly, Nodify data is collected on an hourly basis and provides customers with a daily update on usage.
Deeper Insights: Going beyond the generic VPN collection, Nodify provides users with critical insights into the VPN user, including services provided by the VPN provider such as "no logging," "multihop," and "corporate," these fields help clients determine the good vs the bad based on their use case.
Ease of Use: Nodify has a User interface that allows clients to quickly get a complete understanding of any VPN provider through a simple web dashboard.
“GPS spoofing has become a major pain point for industries ranging from streaming to gaming services. With everything from third-party apps to full-service providers now offering VPN services, it has become harder for providers to delineate what devices should be granted access. Still, accurate identification remains critical to their success,” said Jonathan Tomek, VP of Research and Development at Digital Element. “Because Nodify is API based, we’re able to provide that granular data in the moments that matter the most. Users aren’t limited to just relying on GPS data from a phone that can easily be spoofed.”
About Digital Element
Digital Element is the global IP geolocation and intelligence leader. In business for more than two decades, the company has unrivalled expertise in leveraging IP address insights to deliver new value to companies in a privacy-sensitive, transparent manner. Leveraged by the world’s most recognised brands, Digital Element provides clients with innovative solutions designed to optimise engagement across industries and applications, creating unique value at every consumer touchpoint. Many of the world’s largest websites, brands, security companies, ad networks, social media platforms and mobile publishers have trusted Digital Element’s technology to target advertising, localise content, enhance analytics, and manage content rights as well as detect and prevent online fraud.
VIRTUAL DESKTOP STRATEGIES
Castle Shield Holdings, | October 14, 2022
Castle Shield Holdings, LLC., a leader in Zero Trust and cybersecurity solutions, today announced that its Aeolus VPN solution now supports additional post-quantum cryptography (PQC) algorithms selected by the National Institute of Standards and Technology (NIST).
Last year, prior to the conclusion of the third round of the NIST PQC Standardization, we announced the successful integration of the Saber algorithm into Aeolus VPN. Reference our October 11, 2021, press release.
NIST has now selected two primary PQC algorithms for most use cases: CRYSTALS-KYBER and CRYSTALS-Dilithium. In addition, the signature schemes FALCON and SPHINCS+ were standardized as well. Kyber and Dilithium were both selected for their strong security and excellent performance, and NIST expects them to work well in most applications. Therefore, we have integrated Kyber (i.e., Kyber1024) and Dilithium (i.e., Dilithium5) algorithms into Aeolus VPN as well.
Aeolus VPN protects data between two or more network points. It offers a streamlined approach to privacy which results in more stability and lower latency that is a perfect addition to enterprise data-in-motion security for both classic and post-quantum computing environments. Aeolus VPN offers point-to-point asymmetric PQC and symmetric encryption for UDP and TCP on Windows, Linux and macOS platforms.
“At Castle Shield, we are encryption agnostic. As NIST selects new PQC standards, we will add them to our suite of solutions that further demonstrates the cryptographic agility of our products. Our primary focus is to seamlessly integrate the best encryption algorithms available with our solutions to protect our customer’s data for today and tomorrow,”
Dr. Milton Mattox, Chief Technology Officer at Castle Shield, Holdings, LLC
Aeolus VPN with PQC continues to be available today for testing, proofs of concept, and production installations.
About Castle Shield Holdings, LLC
Founded in 2019, Castle Shield offers a complete range of enterprise-grade cybersecurity solutions that protects enterprises and consumers against all internal and external cyber threats. Our quantum-resistant solutions (Fides) stand strong as the last line of defense for enterprise and consumer data in the emerging quantum computing threat landscape. Legion, our Security Information Event Management or (SIEM) product portfolio and Fides work together to strengthen your overall data security. We monitor and address threat vectors through our scalable, multi-tenant SIEM platform, protecting enterprise systems and data in an efficient, cost-effective manner. In addition, we utilize an advanced compliance platform (Senate) and expert analysis with an in-depth understanding of dynamic compliance standards and industry best practices to highlight cyber risk factors. Our Senate system provides comprehensive ratings for third party vendors based on technical risk scores, compliance, and financial impact in the event of a breach. Our 360° proactive security solutions are what sets Castle Shield apart independent of your IT backbone whether cloud, hybrid or premise based.
VIRTUAL DESKTOP STRATEGIES
Arculix | November 21, 2022
SecureAuth, a leader in access management and authentication, today announced its Arculix Universal Authentication Fabric to further strengthen the technology to enable organizations for passwordless continuous authentication. Arculix Universal Authentication Fabric is a technology framework that delivers authentication driven by AI/ML behavioral modeling, continuous risk scoring and eliminates logging in making passwords obsolete. For users, it’s a one-and-done event for accessing their relevant apps, VDI or SSO. For companies, it’s a robust authentication with continuous authentication in the background without any friction to the user.
“Historically, a single source to define and administer policy and processes for all users has been absent, Fraud, credential stuffing and attacks will continue to evolve as bad actors thwart existing security approaches. SecureAuth’s Universal Authentication Fabric delivers the first risk-based analytics approach as a consolidated backbone for continuous, multi-factor, and passwordless authentication with the highest level of security as well as a frictionless experience for users.”
Paul Trulove, CEO of SecureAuth
Between authenticating to the workstation, an SSO portal or federated web apps, VDIs, VPN, and PAM solutions, the typical user authenticates 16 times a day using three different sets of username and password. This is simultaneously insecure and a poor user experience. With Arculix Universal Authentication Fabric, users can login once and securely access the applications needed to do their job. Arculix Universal Authentication Fabric allows users to attain a level of assurance needed to authenticate with its patented behavioral AI/ML risk analytics engine. To ensure there is no account takeover (ATO), it generates a score at the beginning of a user logging in that is used to grant access to web apps, servers and services without requiring another factor check. This removes the need for siloed systems to authenticate users.
“SecureAuth’s Arculix Universal Authentication Fabric is the underlying element for the new 360-degree cybersecurity perimeter that every enterprise needs: Continuous, Holistic and Adaptive,” said Alfredo Estirado, CEO of Grupo TRC. “As a key partner of SecureAuth, we are excited to offer this to our customers across various geographies.”
Key capabilities include expansion of passwordless features into endpoints, including access to persistent and non-persistent VDIs, in the same passwordless way a user authenticates to a standard machine. This enables a passwordless authentication journey whether in or out of the office. This Universal Authentication Fabric also supports our device trust support for seamless passwordless authentication for transient virtual desktops and physical desktops.
About SecureAuth Corporation
SecureAuth is a next-gen access management and authentication company that enables secure and passwordless continuous authentication experience for employees, partners and customers. With the only solution that can be deployed in cloud, hybrid and on-premises environments, SecureAuth manages and protects access to applications, systems and data at scale, anywhere in the world.