Machine identity protection firm Venafi Inc. today introduced its new “Stop Unauthorized Code Solution,” a solution that reduces the attack surface and hardens enterprise security by preventing malicious code.

Designed to help security teams proactively prevent unauthorized code across any operating environment, the new solution leverages the combined power of Venafi’s CodeSign Protect product, a trusted team of security experts and Venafi’s technology ecosystem. In doing so, the solution stops potential malware and cyberattacks and minimizes security breaches through improved application control.

The end-to-end solution allows security teams and administrators to maintain their code signing trust chain across all environments – from modern, cloud-native environments such as Kubernetes to Windows, Linux, Apple and Android environments. The solution gives teams strict control over code use and execution by verifying that software originates from an approved source and has not been altered. Added into the mix are stringent execution policy controls that permit only authorized code to run and block any unauthorized code throughout the enterprise.

“Modern software development often brings increasingly complex security threats, with unauthorized code and malicious software emerging as a favored attack vector for cybercriminals today,” said Chief Product Officer Shivajee Samdarshi. “Unauthorized code can introduce significant security risk into any organization, with major business implications.”

Key features of Venafi’s Stop Unauthorized Code Solution include a secure code signing process that allows security teams to automate and secure the entire code signing lifecycle, significantly easing the workload of development teams. The process involves using private digital certificates or those issued by trusted Certificate Authorities, ensuring the authenticity and security of the code.

Dynamic Certificate-Based Application Control in the solution offers a flexible and dynamic approach to application control by reducing the strain on security teams and enhancing compliance and security. It allows teams to maintain certificate-based allowlists through their operating systems or existing security solutions, such as endpoint protection platforms or intrusion prevention systems, equipped with features to manage these allowlists.

Certificate Verification and Unauthorized Code Blocking features verify the digital signature against trusted code-signing certificates, allowing only authentic and unaltered software to run. To prevent the operation of unauthorized software, the system blocks any code that does not use valid, trusted code signing certificates or is not included in the list of approved certificates.

The last feature, Optimization and Integration Services, offers ongoing support and guidance. The service helps customers tailor the solution to meet their organizational needs, including configuring and optimizing integrations with third-party technologies and existing security vendors and workflows.

The new Venafi Stop Unauthorized Code Solution is available today.

Image: Venafi