Password management for government agencies

The pressure to put more services online creates new security and accountability challenges for government agencies. In addition to tough new audit requirements such as FISMA, many public-facing services require secure online payments that comply with the payment card industry's PCI DSS standards.

Cloakware helps protect administrator and application passwords within federal, state and local government datacenters, while helping them to reduce operational costs and meet IT audit compliance for standards such as FISMA, PCI and HIPAA.

Cloakware's privileged password management software

Cloakware Password Authority™ is proven technology for the centralized management and protection of privileged passwords. The solution securely stores critical administrator and application-to-application passwords and releases them under defined granular policies. Password Authority’s automated processes deliver significant cost savings and cost avoidance over manual efforts.

Password Authority is built on a solid security foundation that leverages Cloakware’s patented security and encryption development tools.  Designed to protect confidential data in unsecured environments, it provides best-of-breed security for your datacenter passwords.  Password Authority is designed to securely operate in hostile environments, providing our government customers with the assurance that their datacenter passwords will not be compromised, no matter how skilled and dedicated an attacker may be.

Attaining FISMA compliance

Cloakware Password Authority supports and enables compliance with the Federal Information Security Management Act of 2002 (FISMA) processes and standings for federal agencies, contractors and other organizations.

FISMA was passed in 2002 as part of the United States E-Government Act and delivers a mandatory list of processes that must be followed for all information systems. The National Institute of Standards and Technology (NIST) Special Publication 800 series of documents form a strong foundation for FISMA compliance and are further reinforced by OMB Circular A-130 and various agency-specific directives that govern agency information assurance efforts. Learn more by downloading our white paper Attaining FISMA Compliance.

Attaining PCI compliance

Cloakware Password Authority supports and enables compliance with the requirements of the Payment Card Industry Data Security Standard (PCI DSS) V1.2.

To aid in preventing the theft of payment card information, key industry players including Visa, MasterCard and Discover created PCI DSS. In September 2006, the group published Version 1.1 of the specification that incorporates feedback from the Version 1.0 specification. Learn more about PCI compliance by downloading our white paper on Attaining PCI Compliance.

Attaining HIPAA compliance

Cloakware Password Authority supports and enables compliance with the Health Insurance
Portability and Accountability Act of 1996 (HIPAA) for covered organizations.

HIPAA’s compliance dates of April 21, 2005 (April 21, 2006 for small health plans) demanded much attention, resources and money from the covered organizations to remedy their existing and planned systems and processes where electronic protected health information (EPHI) was involved. While security and privacy are linked intrinsically, it is the application of the appropriate security techniques that actually helps to mitigate the risks associated with the identified threats to stored or transmitted EPHI. Learn more about HIPAA compliance by downloading our white paper on Attaining HIPAA Compliance.

HSPD-12 Common Identification Standard for Federal Employees and Contractors

On August 27, 2004, the President signed HSPD-12 “Policy for a Common Identification Standard for Federal Employees and Contractors” (the Directive). The Directive requires the development
and agency implementation of a mandatory, government-wide standard for secure and reliable forms of identification for Federal employees and contractors. Learn more by downloading our position paper on HSPD-12 Common Identification Standard for Federal Employees and Contractors.