Today’s security best practices are tomorrow’s security vulnerabilities. Cryptography is key to secure system design but it ages over time. Researchers study and reveal weaknesses in an algorithm and overnight these weaknesses are codified in security exploits that attempt to break into systems.
Software may have been designed with state-of-the-art crypto decades ago but not upgraded since. Backwards compatibility considerations prevent the software from using the most recent and secure cryptographic algorithms.
CTIR is a security management tool that helps alleviate these problems by examining software throughout a network and creating an inventory of cryptographic implementations found in compiled software on each network end point. The agent flags instances of old, antiquated or broken cryptography and identifies software with publicly known cryptographic issues.
The Agilesec CTIR Agent provides: