Cloud Native Server Authentication

Let's to a cloud server!

Using existing tools

Using ScaleFT

SSH to Instance

Using existing tools

> ssh i-5203422 ssh: Could not resolve hostname i-5203422c: nodename nor servname provided, or not known
OpenSSH isn't integrated with cloud services

Using ScaleFT

> ssh i-5203422 paul_querna@ip-172-31-27-10 ~ $
ScaleFT integrates with cloud metadata services
Learn More >>

Validate Host Keys

Using existing tools

> ssh ec2-user@ec2-203-0-113-184.us-west-2.compute.amazonaws.com The authenticity of host 'ec2-203-0-113-184.us-west-2.compute.amazonaws.com (203.0.113.184)' can't be established. ECDSA key fingerprint is SHA256:Uc93exvYbqKeXWYyVgT7zzOUi6GiCsYej6ZOvudhSkE. Are you sure you want to continue connecting (yes/no)?
Host Keys are often ignored

Using ScaleFT

> ssh i-5203422 paul_querna@ip-172-31-27-10 ~ $
ScaleFT validates Hosts Keys, preventing MITM attacks
Learn More >>

Account Management

Using existing tools

ec2-user@ip-172-31-27-10 ~ $ id uid=500(ec2-user) gid=500(ec2-user) groups=500(ec2-user),10(wheel)
Shared users create many security and compliance problems

Using ScaleFT

paul_querna@ip-172-31-27-10 ~ $ id uid=60004(paul_querna) gid=1004(paul_querna) groups=1004(paul_querna),90000(sft-admin)
ScaleFT provides unique user accounts linked to your identity provider
Learn More >>

Access Control

Using existing tools

ec2-user@ip-172-31-27-10 ~ $
Static credentials are the cause of 63% of all confirmed data breaches

Using ScaleFT

Permission denied (publickey).
ScaleFT prevents unauthorized access with realtime decisions
Learn More >>

Using existing tools

Using ScaleFT

RDP to Instance

Using existing tools

RDP clients aren't integrated with cloud services

Using ScaleFT

PS C:\> sft rdp WIN-C81EJK
ScaleFT integrates with cloud metadata services
Learn More >>

Validate Connection

Using existing tools

Difficult for users to validate the remote server

Using ScaleFT

ScaleFT secures connections automatically
Learn More >>

Authentication

Using existing tools

Password authentication is the default

Using ScaleFT

ScaleFT transparently uses fast-expiring client certificates for authentication
Learn More >>

Validate Host Certificates

Using existing tools

Host certificate warnings are often ignored

Using ScaleFT

ScaleFT validates host certificates, preventing MITM attacks
Learn More >>

ScaleFT is Cloud Native Server Authentication

Learn More

Features
Documentation

Contact me about ScaleFT

"Ops teams need new security solutions to scale with the massive explosion of cloud infrastructure. ScaleFT's launch of risk-based authentication with ScaleFT Access is incredibly valuable."

News & Events

Netflix OSS Security Meetup

Using Splunk with ScaleFT

Open Letter to Senator Feinstein on Cybersecurity Vulnerability Management Policies

Company

Use Cases

Product

Contact

Copyright © 2016 ScaleFT Inc.