Keeper Security, a zero-trust and zero-knowledge cybersecurity software company that protects passwords, passkeys, privileged access, secrets and remote connections, unveiled two major privileged access capabilities for the Keeper platform.
By introducing time-limited access and self-destructing records, Keeper plans to extend new methods for quickly and securely elevating/revoking access rights for select users. The concept is to reduce the gradual accumulation of unnecessary privileges, reducing potential attack surfaces for organizations, in particular with unsupervised remote workers.
“The implementation of time-limited access and self-destructing records is a significant leap forward in secure credential sharing and addressing the risks posed by privilege escalation,” said Craig Lurey, CTO and co-founder, Keeper Security. “These features empower both individuals and organizations to share information securely – providing a higher level of control over data access.”
With time-limited access, users can securely share records for a predetermined length of time, including records in a user’s vault, whether credentials, files or payment information. When that time ends, access is revoked automatically with no further action required by either party. Administrators also have the option – when paired with Keeper Secrets Manager (KSM) – to schedule automatic rotations of a shared credential upon the expiration. The self-destructing records feature, meanwhile, automatically deletes records after the recipient opens it.
