Keeper Product Catalog

2 copy 2019 Keeper Security Inc

Table of Contents

Keeper Enterprise

SSO Connect

ARAM

BreachWatch

KeeperChat

3

6

9

14

17

Keeper Enterprise

3 copy 2019 Keeper Security Inc

Security

The most advanced security perimeter is easily bypassed by weak passwords Employee password habits can only be improved with insight into password usage and compliance Keeper solves this by providing comprehensive reporting auditing and notifications

Compliance

Every cybersecurity framework from NIST to ISO and PCI to HIPAA requires access tracking least-privilege controls and audit logs Keeper enables role-based controls and visibility into shared credentials Access logs to Keeper vaults can be audited for compliance or forensics

Microsoft Active Directory Synchronization

Keeperreg AD Bridge synchronizes to MicrosoftActive Directory or Open LDAP This enables rapid user provisioning and automatically adds Nodes (organizational units) Users Roles and Teams Keeper enables role-based access control and the ability to track roles as people move throughout the organization This includes automatically locking vaults of employees that leave

Support Costs

Drastically reduce help desk costs related to password issues Forrester found that several large companies have allocated over $1 million annually for password-related support

Productivity

Save employees time frustration and eliminate the need for them to reuse and remember passwords Keeper will generate strong random passwords and automatically fill them for users The Keeper vault with a responsive and intuitive UI is available to employees from any device and location Everything Keeper does is geared towards quick user adoption and security Keeper is published in 21 languages for global use

Automate Back-End Password Rotation

Keeperreg Commander SDK provides IT admins and developers with command-line tools and Python source code to perform password management password rotation and vault functionality Eliminate hard-coded or plaintext back-end passwords Connectors include Unix Windows and AD logins Oracle Microsoft SQL MySQL Postgres and Dynamo databases and AWS password and API access keys

of help desk calls are password related3

of data breaches are due to weak default or stolen passwords1

Your biggest security threat walks in your door every day

Employees use weak passwords reuse them across accounts and forget them

Thousands of Organizations Trust Keeper

81 80

of people use the same password for everything2

50

DATAS H EE T

Keeper Enterprise

4 copy 2019 Keeper Security Inc

Two-Factor Authentication

Keeper supports Two-Factor Authentication (2FA) including SMS Keeper DNAreg (smartwatch tap) TOTP (eg Google Authenticator and Authy) FIDO U2F (eg Yubikey) Duo and RSA SecurID 2FA may be enforced through role-based controls

Zero-Knowledge Architecture

All encryption and decryption is done on the userrsquos device PBKDF2 with 100000 rounds is used for deriving a key from the userrsquos master password Each record is encrypted using AES-256 with a different and unique key that is randomly generated client-side RSA encryption is used for secure record sharing between users and teams Keeperrsquos infrastructure syncrsquos encrypted ciphertext between devices Key pinning is enforced between client and server All data in transit and at rest is always encrypted - it cannot be viewed by Keeper Security employees or any outside party

Email Auto-Provisioning

Large organizations such as universities can provision Keeper vaults to thousands of users with a domain match on email addresses With minimum administration large-scale deployment can be accomplished using an existing email channel or portal

Support for Subsidiaries Departments Offices and Branches

Keeper was created to support nodes and organizational units to accommodate any-sized organization across all major industries The Keeper Administrator can structure password management policies by role team and organizational unit Thus different divisions branches brands and office locations of an organization can all be protected with Keeper while having different access rights permissions and policies for enforcing secure password management across the organization Each organization may utilize multiple Keeper Administrators with fine-grained permissions over their users roles and teams

Keeper Integrates with Leading SSO Solutions

Keeperreg SSO Connect integrates into your IdP and is the perfect solution for applications that donrsquot support SAML protocols Keeper also provides users with privileged access a secure vault to store all of their non-SSO passwords digital certificates encryption keys and API access keys

5 copy 2019 Keeper Security Inc

1 Verizon 2017 Data Breach Incident Report 2 Keeper Survey of 1000 Internet Users in 2017 3 Gartner Group 4 Forrester Report Best Practices Selecting Deploying and Managing Enterprise Password Managers

Keeper Third-Party Attestations and Certifications

6 copy 2019 Keeper Security Inc

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

2 copy 2019 Keeper Security Inc

Table of Contents

Keeper Enterprise

SSO Connect

ARAM

BreachWatch

KeeperChat

3

6

9

14

17

Keeper Enterprise

3 copy 2019 Keeper Security Inc

Security

The most advanced security perimeter is easily bypassed by weak passwords Employee password habits can only be improved with insight into password usage and compliance Keeper solves this by providing comprehensive reporting auditing and notifications

Compliance

Every cybersecurity framework from NIST to ISO and PCI to HIPAA requires access tracking least-privilege controls and audit logs Keeper enables role-based controls and visibility into shared credentials Access logs to Keeper vaults can be audited for compliance or forensics

Microsoft Active Directory Synchronization

Keeperreg AD Bridge synchronizes to MicrosoftActive Directory or Open LDAP This enables rapid user provisioning and automatically adds Nodes (organizational units) Users Roles and Teams Keeper enables role-based access control and the ability to track roles as people move throughout the organization This includes automatically locking vaults of employees that leave

Support Costs

Drastically reduce help desk costs related to password issues Forrester found that several large companies have allocated over $1 million annually for password-related support

Productivity

Save employees time frustration and eliminate the need for them to reuse and remember passwords Keeper will generate strong random passwords and automatically fill them for users The Keeper vault with a responsive and intuitive UI is available to employees from any device and location Everything Keeper does is geared towards quick user adoption and security Keeper is published in 21 languages for global use

Automate Back-End Password Rotation

Keeperreg Commander SDK provides IT admins and developers with command-line tools and Python source code to perform password management password rotation and vault functionality Eliminate hard-coded or plaintext back-end passwords Connectors include Unix Windows and AD logins Oracle Microsoft SQL MySQL Postgres and Dynamo databases and AWS password and API access keys

of help desk calls are password related3

of data breaches are due to weak default or stolen passwords1

Your biggest security threat walks in your door every day

Employees use weak passwords reuse them across accounts and forget them

Thousands of Organizations Trust Keeper

81 80

of people use the same password for everything2

50

DATAS H EE T

Keeper Enterprise

4 copy 2019 Keeper Security Inc

Two-Factor Authentication

Keeper supports Two-Factor Authentication (2FA) including SMS Keeper DNAreg (smartwatch tap) TOTP (eg Google Authenticator and Authy) FIDO U2F (eg Yubikey) Duo and RSA SecurID 2FA may be enforced through role-based controls

Zero-Knowledge Architecture

All encryption and decryption is done on the userrsquos device PBKDF2 with 100000 rounds is used for deriving a key from the userrsquos master password Each record is encrypted using AES-256 with a different and unique key that is randomly generated client-side RSA encryption is used for secure record sharing between users and teams Keeperrsquos infrastructure syncrsquos encrypted ciphertext between devices Key pinning is enforced between client and server All data in transit and at rest is always encrypted - it cannot be viewed by Keeper Security employees or any outside party

Email Auto-Provisioning

Large organizations such as universities can provision Keeper vaults to thousands of users with a domain match on email addresses With minimum administration large-scale deployment can be accomplished using an existing email channel or portal

Support for Subsidiaries Departments Offices and Branches

Keeper was created to support nodes and organizational units to accommodate any-sized organization across all major industries The Keeper Administrator can structure password management policies by role team and organizational unit Thus different divisions branches brands and office locations of an organization can all be protected with Keeper while having different access rights permissions and policies for enforcing secure password management across the organization Each organization may utilize multiple Keeper Administrators with fine-grained permissions over their users roles and teams

Keeper Integrates with Leading SSO Solutions

Keeperreg SSO Connect integrates into your IdP and is the perfect solution for applications that donrsquot support SAML protocols Keeper also provides users with privileged access a secure vault to store all of their non-SSO passwords digital certificates encryption keys and API access keys

5 copy 2019 Keeper Security Inc

1 Verizon 2017 Data Breach Incident Report 2 Keeper Survey of 1000 Internet Users in 2017 3 Gartner Group 4 Forrester Report Best Practices Selecting Deploying and Managing Enterprise Password Managers

Keeper Third-Party Attestations and Certifications

6 copy 2019 Keeper Security Inc

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

Keeper Enterprise

3 copy 2019 Keeper Security Inc

Security

The most advanced security perimeter is easily bypassed by weak passwords Employee password habits can only be improved with insight into password usage and compliance Keeper solves this by providing comprehensive reporting auditing and notifications

Compliance

Every cybersecurity framework from NIST to ISO and PCI to HIPAA requires access tracking least-privilege controls and audit logs Keeper enables role-based controls and visibility into shared credentials Access logs to Keeper vaults can be audited for compliance or forensics

Microsoft Active Directory Synchronization

Keeperreg AD Bridge synchronizes to MicrosoftActive Directory or Open LDAP This enables rapid user provisioning and automatically adds Nodes (organizational units) Users Roles and Teams Keeper enables role-based access control and the ability to track roles as people move throughout the organization This includes automatically locking vaults of employees that leave

Support Costs

Drastically reduce help desk costs related to password issues Forrester found that several large companies have allocated over $1 million annually for password-related support

Productivity

Save employees time frustration and eliminate the need for them to reuse and remember passwords Keeper will generate strong random passwords and automatically fill them for users The Keeper vault with a responsive and intuitive UI is available to employees from any device and location Everything Keeper does is geared towards quick user adoption and security Keeper is published in 21 languages for global use

Automate Back-End Password Rotation

Keeperreg Commander SDK provides IT admins and developers with command-line tools and Python source code to perform password management password rotation and vault functionality Eliminate hard-coded or plaintext back-end passwords Connectors include Unix Windows and AD logins Oracle Microsoft SQL MySQL Postgres and Dynamo databases and AWS password and API access keys

of help desk calls are password related3

of data breaches are due to weak default or stolen passwords1

Your biggest security threat walks in your door every day

Employees use weak passwords reuse them across accounts and forget them

Thousands of Organizations Trust Keeper

81 80

of people use the same password for everything2

50

DATAS H EE T

Keeper Enterprise

4 copy 2019 Keeper Security Inc

Two-Factor Authentication

Keeper supports Two-Factor Authentication (2FA) including SMS Keeper DNAreg (smartwatch tap) TOTP (eg Google Authenticator and Authy) FIDO U2F (eg Yubikey) Duo and RSA SecurID 2FA may be enforced through role-based controls

Zero-Knowledge Architecture

All encryption and decryption is done on the userrsquos device PBKDF2 with 100000 rounds is used for deriving a key from the userrsquos master password Each record is encrypted using AES-256 with a different and unique key that is randomly generated client-side RSA encryption is used for secure record sharing between users and teams Keeperrsquos infrastructure syncrsquos encrypted ciphertext between devices Key pinning is enforced between client and server All data in transit and at rest is always encrypted - it cannot be viewed by Keeper Security employees or any outside party

Email Auto-Provisioning

Large organizations such as universities can provision Keeper vaults to thousands of users with a domain match on email addresses With minimum administration large-scale deployment can be accomplished using an existing email channel or portal

Support for Subsidiaries Departments Offices and Branches

Keeper was created to support nodes and organizational units to accommodate any-sized organization across all major industries The Keeper Administrator can structure password management policies by role team and organizational unit Thus different divisions branches brands and office locations of an organization can all be protected with Keeper while having different access rights permissions and policies for enforcing secure password management across the organization Each organization may utilize multiple Keeper Administrators with fine-grained permissions over their users roles and teams

Keeper Integrates with Leading SSO Solutions

Keeperreg SSO Connect integrates into your IdP and is the perfect solution for applications that donrsquot support SAML protocols Keeper also provides users with privileged access a secure vault to store all of their non-SSO passwords digital certificates encryption keys and API access keys

5 copy 2019 Keeper Security Inc

1 Verizon 2017 Data Breach Incident Report 2 Keeper Survey of 1000 Internet Users in 2017 3 Gartner Group 4 Forrester Report Best Practices Selecting Deploying and Managing Enterprise Password Managers

Keeper Third-Party Attestations and Certifications

6 copy 2019 Keeper Security Inc

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

Security

The most advanced security perimeter is easily bypassed by weak passwords Employee password habits can only be improved with insight into password usage and compliance Keeper solves this by providing comprehensive reporting auditing and notifications

Compliance

Every cybersecurity framework from NIST to ISO and PCI to HIPAA requires access tracking least-privilege controls and audit logs Keeper enables role-based controls and visibility into shared credentials Access logs to Keeper vaults can be audited for compliance or forensics

Microsoft Active Directory Synchronization

Keeperreg AD Bridge synchronizes to MicrosoftActive Directory or Open LDAP This enables rapid user provisioning and automatically adds Nodes (organizational units) Users Roles and Teams Keeper enables role-based access control and the ability to track roles as people move throughout the organization This includes automatically locking vaults of employees that leave

Support Costs

Drastically reduce help desk costs related to password issues Forrester found that several large companies have allocated over $1 million annually for password-related support

Productivity

Save employees time frustration and eliminate the need for them to reuse and remember passwords Keeper will generate strong random passwords and automatically fill them for users The Keeper vault with a responsive and intuitive UI is available to employees from any device and location Everything Keeper does is geared towards quick user adoption and security Keeper is published in 21 languages for global use

Automate Back-End Password Rotation

Keeperreg Commander SDK provides IT admins and developers with command-line tools and Python source code to perform password management password rotation and vault functionality Eliminate hard-coded or plaintext back-end passwords Connectors include Unix Windows and AD logins Oracle Microsoft SQL MySQL Postgres and Dynamo databases and AWS password and API access keys

of help desk calls are password related3

of data breaches are due to weak default or stolen passwords1

Your biggest security threat walks in your door every day

Employees use weak passwords reuse them across accounts and forget them

Thousands of Organizations Trust Keeper

81 80

of people use the same password for everything2

50

DATAS H EE T

Keeper Enterprise

4 copy 2019 Keeper Security Inc

Two-Factor Authentication

Keeper supports Two-Factor Authentication (2FA) including SMS Keeper DNAreg (smartwatch tap) TOTP (eg Google Authenticator and Authy) FIDO U2F (eg Yubikey) Duo and RSA SecurID 2FA may be enforced through role-based controls

Zero-Knowledge Architecture

All encryption and decryption is done on the userrsquos device PBKDF2 with 100000 rounds is used for deriving a key from the userrsquos master password Each record is encrypted using AES-256 with a different and unique key that is randomly generated client-side RSA encryption is used for secure record sharing between users and teams Keeperrsquos infrastructure syncrsquos encrypted ciphertext between devices Key pinning is enforced between client and server All data in transit and at rest is always encrypted - it cannot be viewed by Keeper Security employees or any outside party

Email Auto-Provisioning

Large organizations such as universities can provision Keeper vaults to thousands of users with a domain match on email addresses With minimum administration large-scale deployment can be accomplished using an existing email channel or portal

Support for Subsidiaries Departments Offices and Branches

Keeper was created to support nodes and organizational units to accommodate any-sized organization across all major industries The Keeper Administrator can structure password management policies by role team and organizational unit Thus different divisions branches brands and office locations of an organization can all be protected with Keeper while having different access rights permissions and policies for enforcing secure password management across the organization Each organization may utilize multiple Keeper Administrators with fine-grained permissions over their users roles and teams

Keeper Integrates with Leading SSO Solutions

Keeperreg SSO Connect integrates into your IdP and is the perfect solution for applications that donrsquot support SAML protocols Keeper also provides users with privileged access a secure vault to store all of their non-SSO passwords digital certificates encryption keys and API access keys

5 copy 2019 Keeper Security Inc

1 Verizon 2017 Data Breach Incident Report 2 Keeper Survey of 1000 Internet Users in 2017 3 Gartner Group 4 Forrester Report Best Practices Selecting Deploying and Managing Enterprise Password Managers

Keeper Third-Party Attestations and Certifications

6 copy 2019 Keeper Security Inc

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

Two-Factor Authentication

Keeper supports Two-Factor Authentication (2FA) including SMS Keeper DNAreg (smartwatch tap) TOTP (eg Google Authenticator and Authy) FIDO U2F (eg Yubikey) Duo and RSA SecurID 2FA may be enforced through role-based controls

Zero-Knowledge Architecture

All encryption and decryption is done on the userrsquos device PBKDF2 with 100000 rounds is used for deriving a key from the userrsquos master password Each record is encrypted using AES-256 with a different and unique key that is randomly generated client-side RSA encryption is used for secure record sharing between users and teams Keeperrsquos infrastructure syncrsquos encrypted ciphertext between devices Key pinning is enforced between client and server All data in transit and at rest is always encrypted - it cannot be viewed by Keeper Security employees or any outside party

Email Auto-Provisioning

Large organizations such as universities can provision Keeper vaults to thousands of users with a domain match on email addresses With minimum administration large-scale deployment can be accomplished using an existing email channel or portal

Support for Subsidiaries Departments Offices and Branches

Keeper was created to support nodes and organizational units to accommodate any-sized organization across all major industries The Keeper Administrator can structure password management policies by role team and organizational unit Thus different divisions branches brands and office locations of an organization can all be protected with Keeper while having different access rights permissions and policies for enforcing secure password management across the organization Each organization may utilize multiple Keeper Administrators with fine-grained permissions over their users roles and teams

Keeper Integrates with Leading SSO Solutions

Keeperreg SSO Connect integrates into your IdP and is the perfect solution for applications that donrsquot support SAML protocols Keeper also provides users with privileged access a secure vault to store all of their non-SSO passwords digital certificates encryption keys and API access keys

5 copy 2019 Keeper Security Inc

1 Verizon 2017 Data Breach Incident Report 2 Keeper Survey of 1000 Internet Users in 2017 3 Gartner Group 4 Forrester Report Best Practices Selecting Deploying and Managing Enterprise Password Managers

Keeper Third-Party Attestations and Certifications

6 copy 2019 Keeper Security Inc

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

6 copy 2019 Keeper Security Inc

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantlyreduce cyber theft and increase online productivity As the leading password manager and digital vault Keeper helps millions of peopleand thousands of businesses substantially mitigate the risk of a data breach Keeper SSO Connect enables organizations to significantly enhance their Single Sign-On deployments with an integrated zero-knowledge vault which provides advanced password management sharing and security capabilities Keeper SSO Connect also provides secure storage management and sharing of sensitive files documents photos and videos

Product Overview

Keeper SSO Connect is a SAML 20 application which leverages Keeperrsquos zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform Keeper SSO Connect works with popular SSO IdP platforms such as Okta OneLogin Ping Identity F5 BIG-IP APM G Suite and Microsoft ADFSAzure to provide businesses the utmost in authentication flexibility

DATAS H EE T

Keeperreg SSO Connect

7 copy 2019 Keeper Security Inc

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

Business Value

Many businesses use Single Sign-On (SSO) solutions Although these solutions offer a unified login experience they lack the flexibility to store a variety of sensitive information beyond a simple username and password record As an example these solutions canrsquot accommodate login credentials for native applications bank account numbers personal identifiable information employee census data customer credentials and confidential images documents and video files Keeper SSO Connect enhances any Single Sign-On solution by providing a secure password manager and digital vault solution in a zero-knowledge environment that stores not only a login and password but also securely stores and encrypts proprietary customer data access credentials to restricted systems and sensitive documents

System Requirements

Keeper SSO Connect is a software application that is installed on the enterprise customerrsquos on-premise private or cloud servers User encryption keys are generated dynamically by Keeper SSO Connect encrypted and stored locally on the installed server providing the customer with full control over the encryption keys that are used to encrypt and decrypt their digital vaults The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server Windows Mac OS and Linux operating systems are supported Certifications

Visit keepersecuritycomsecurity for a complete list of all

audit and security certifications

8 copy 2019 Keeper Security Inc

Who Uses Keeper

Over 3000 organizations trust Keeper including Sony Siemens Dow Chipotle and IBM Feedback and collaboration with our customers helps drive ongoing feature improvement and product innovation to ensure the Keeper solution continues to deliver business value

9 copy 2019 Keeper Security Inc

Advanced Reporting amp Alerts Module

Advanced Reporting amp Alerts Module Keeper Securityrsquos Advanced Reporting amp Alerts Module (ARAM) empowers any InfoSec administrator to monitor any size user population and provide focused summary trend data and real-time notifications of risky or unusual behaviors This powerful module is built upon Keeperrsquos strict zero-knowledge architecture

With ARAM you can identify and protect against bull Outsider breach activity bull Insider theft bull Insider sabotage

DATAS H EE T

Advanced Reporting amp Alerts Module

10 copy 2019 Keeper Security Inc

Customizable Reports Create customized reports about whatrsquos important to your company and support cybersecurity audits amp compliance Simplify your reporting to fit your needs bull Basic report for Recent Activity includes all events bull Advanced allows customizing and saving bull Wide variety of events types amp attributes to focus views bull Customizable column headings bull Exportable log data to spreadsheets etc

Reporting Detail

Saved Reports

Event Timeline bull Displays Top 5 events (those with highest event counts) during a selected period bull Period selectable between Last 30 Days 7 Days or 24 Hours bull Shows of total for each event bull Customizable to show different events (other than Top 5) bull Mouseovers to show each date

11 copy 2019 Keeper Security Inc

Customizable Alerts Is your company prone to certain security risks Set alerts for those behaviors to alert you in real time to take action bull Choose from wide array of event types and attributes via filters bull Send alerts via email or SMS text bull Control frequency of alerts with multiple types of settings

Alerts Screen

DATAS H EE T

Advanced Reporting amp Alerts Module

12 copy 2019 Keeper Security Inc

Integration with 3rd party Security Information and Event Management (SIEM) tools bull External logging of all events bull Simple set up for Splunk Sumo Amazon S3 amp IBM QRadar

Keeperrsquos Advanced Reporting amp Alerts Module is available for Keeper Business and Keeper Enterprise versions Start a free trial of the ARAM by contacting saleskeepersecuritycom

SIEM Integration

13 copy 2019 Keeper Security Inc

Advanced Reporting amp Alerts Module Keeper Securityrsquos Advanced Reporting amp Alerts Module (ARAM) empowers any InfoSec administrator to monitor any size user population and provide focused summary trend data and real-time notifications of risky or unusual behaviors This powerful module is built upon Keeperrsquos strict zero-knowledge architecture

With ARAM you can identify and protect against bull Outsider breach activity bull Insider theft bull Insider sabotage

DATAS H EE T

Advanced Reporting amp Alerts Module

10 copy 2019 Keeper Security Inc

Customizable Reports Create customized reports about whatrsquos important to your company and support cybersecurity audits amp compliance Simplify your reporting to fit your needs bull Basic report for Recent Activity includes all events bull Advanced allows customizing and saving bull Wide variety of events types amp attributes to focus views bull Customizable column headings bull Exportable log data to spreadsheets etc

Reporting Detail

Saved Reports

Event Timeline bull Displays Top 5 events (those with highest event counts) during a selected period bull Period selectable between Last 30 Days 7 Days or 24 Hours bull Shows of total for each event bull Customizable to show different events (other than Top 5) bull Mouseovers to show each date

11 copy 2019 Keeper Security Inc

Customizable Alerts Is your company prone to certain security risks Set alerts for those behaviors to alert you in real time to take action bull Choose from wide array of event types and attributes via filters bull Send alerts via email or SMS text bull Control frequency of alerts with multiple types of settings

Alerts Screen

DATAS H EE T

Advanced Reporting amp Alerts Module

12 copy 2019 Keeper Security Inc

Integration with 3rd party Security Information and Event Management (SIEM) tools bull External logging of all events bull Simple set up for Splunk Sumo Amazon S3 amp IBM QRadar

Keeperrsquos Advanced Reporting amp Alerts Module is available for Keeper Business and Keeper Enterprise versions Start a free trial of the ARAM by contacting saleskeepersecuritycom

SIEM Integration

13 copy 2019 Keeper Security Inc

Customizable Reports Create customized reports about whatrsquos important to your company and support cybersecurity audits amp compliance Simplify your reporting to fit your needs bull Basic report for Recent Activity includes all events bull Advanced allows customizing and saving bull Wide variety of events types amp attributes to focus views bull Customizable column headings bull Exportable log data to spreadsheets etc

Reporting Detail

Saved Reports

Event Timeline bull Displays Top 5 events (those with highest event counts) during a selected period bull Period selectable between Last 30 Days 7 Days or 24 Hours bull Shows of total for each event bull Customizable to show different events (other than Top 5) bull Mouseovers to show each date

11 copy 2019 Keeper Security Inc

Customizable Alerts Is your company prone to certain security risks Set alerts for those behaviors to alert you in real time to take action bull Choose from wide array of event types and attributes via filters bull Send alerts via email or SMS text bull Control frequency of alerts with multiple types of settings

Alerts Screen

DATAS H EE T

Advanced Reporting amp Alerts Module

12 copy 2019 Keeper Security Inc

Integration with 3rd party Security Information and Event Management (SIEM) tools bull External logging of all events bull Simple set up for Splunk Sumo Amazon S3 amp IBM QRadar

Keeperrsquos Advanced Reporting amp Alerts Module is available for Keeper Business and Keeper Enterprise versions Start a free trial of the ARAM by contacting saleskeepersecuritycom

SIEM Integration

13 copy 2019 Keeper Security Inc

Customizable Alerts Is your company prone to certain security risks Set alerts for those behaviors to alert you in real time to take action bull Choose from wide array of event types and attributes via filters bull Send alerts via email or SMS text bull Control frequency of alerts with multiple types of settings

Alerts Screen

DATAS H EE T

Advanced Reporting amp Alerts Module

12 copy 2019 Keeper Security Inc

Integration with 3rd party Security Information and Event Management (SIEM) tools bull External logging of all events bull Simple set up for Splunk Sumo Amazon S3 amp IBM QRadar

Keeperrsquos Advanced Reporting amp Alerts Module is available for Keeper Business and Keeper Enterprise versions Start a free trial of the ARAM by contacting saleskeepersecuritycom

SIEM Integration

13 copy 2019 Keeper Security Inc

Integration with 3rd party Security Information and Event Management (SIEM) tools bull External logging of all events bull Simple set up for Splunk Sumo Amazon S3 amp IBM QRadar

Keeperrsquos Advanced Reporting amp Alerts Module is available for Keeper Business and Keeper Enterprise versions Start a free trial of the ARAM by contacting saleskeepersecuritycom

SIEM Integration

13 copy 2019 Keeper Security Inc

14 copy 2019 Keeper Security Inc

Credential-Stuffing A Pervasive amp Costly Side Effect of Data BreachesBreachWatchregby Keeper Enterprise-grade dark web monitoring for protecting against

credential-stuffing and account takeover attacks

login attempts due to credential-stuffing attacks in 20181

30B

115M

attempts to use stolen credentials per day1

39

of adults use the same or similar passwords across online accounts2

DATAS H EE T

BreachWatch

15 copy 2019 Keeper Security Inc

Todayrsquos headlines are filled with news of public data breaches However even with all of this public awareness the majority of individuals involved in a data breach are unaware their credentials might have been compromised And unfortunately even when people are aware of a breach they are slow to change the affected passwords

Enter credential-stuffing An attack where cybercriminals use passwords stolen from one breached website to attempt to break into other sites or networks via software and botnets

As an employer if even one of your companyrsquos employeersquos privileged account credentials are exposed via a public data breach your organization is at risk

The best way to protect your employees and your company is to detect and defend against these attacks is BreachWatchreg by Keeper It constantly scans employeesrsquo Keeper vaults for passwords that have been exposed on the dark web from a public data breach and notifies the user to take action It also informs the administrator whether that employee has resolved the exposed password or ignored it

For more information about BreachWatch or to schedule a demo visit keepersecuritycombreachwatch or email saleskeepersecuritycom

KEY FEATURES

bull Deploys to all Keeper users and informs them of passwords breached on the dark web

bull Maintains Keeperrsquos proprietary zero-knowledge cybersecurity platform architecture

bull Provides administrative oversight of users with risky passwords

bull Integrates with Keeperrsquos Advanced Reporting amp Alerts Module (ARAM) for drill-down reports and real-time alerts of BreachWatch-related alerts

bull Integrates with SIEM tools by sending the events from the userrsquos device for more analysis

Sources 1 Akami ldquoCredential Stuffing Attacks and Economiesrdquo April 2019 2 Pew Research Center ldquoAmericans and Cybersecurityrdquo January 2017

Amazon S3 Bucket

Splunk

IBM QRadar SIEM

Sumo Logic

16 copy 2019 Keeper Security Inc

Credential-Stuffing A Pervasive amp Costly Side Effect of Data BreachesBreachWatchregby Keeper Enterprise-grade dark web monitoring for protecting against

credential-stuffing and account takeover attacks

login attempts due to credential-stuffing attacks in 20181

30B

115M

attempts to use stolen credentials per day1

39

of adults use the same or similar passwords across online accounts2

DATAS H EE T

BreachWatch

15 copy 2019 Keeper Security Inc

Todayrsquos headlines are filled with news of public data breaches However even with all of this public awareness the majority of individuals involved in a data breach are unaware their credentials might have been compromised And unfortunately even when people are aware of a breach they are slow to change the affected passwords

Enter credential-stuffing An attack where cybercriminals use passwords stolen from one breached website to attempt to break into other sites or networks via software and botnets

As an employer if even one of your companyrsquos employeersquos privileged account credentials are exposed via a public data breach your organization is at risk

The best way to protect your employees and your company is to detect and defend against these attacks is BreachWatchreg by Keeper It constantly scans employeesrsquo Keeper vaults for passwords that have been exposed on the dark web from a public data breach and notifies the user to take action It also informs the administrator whether that employee has resolved the exposed password or ignored it

For more information about BreachWatch or to schedule a demo visit keepersecuritycombreachwatch or email saleskeepersecuritycom

KEY FEATURES

bull Deploys to all Keeper users and informs them of passwords breached on the dark web

bull Maintains Keeperrsquos proprietary zero-knowledge cybersecurity platform architecture

bull Provides administrative oversight of users with risky passwords

bull Integrates with Keeperrsquos Advanced Reporting amp Alerts Module (ARAM) for drill-down reports and real-time alerts of BreachWatch-related alerts

bull Integrates with SIEM tools by sending the events from the userrsquos device for more analysis

Sources 1 Akami ldquoCredential Stuffing Attacks and Economiesrdquo April 2019 2 Pew Research Center ldquoAmericans and Cybersecurityrdquo January 2017

Amazon S3 Bucket

Splunk

IBM QRadar SIEM

Sumo Logic

16 copy 2019 Keeper Security Inc

Todayrsquos headlines are filled with news of public data breaches However even with all of this public awareness the majority of individuals involved in a data breach are unaware their credentials might have been compromised And unfortunately even when people are aware of a breach they are slow to change the affected passwords

Enter credential-stuffing An attack where cybercriminals use passwords stolen from one breached website to attempt to break into other sites or networks via software and botnets

As an employer if even one of your companyrsquos employeersquos privileged account credentials are exposed via a public data breach your organization is at risk

The best way to protect your employees and your company is to detect and defend against these attacks is BreachWatchreg by Keeper It constantly scans employeesrsquo Keeper vaults for passwords that have been exposed on the dark web from a public data breach and notifies the user to take action It also informs the administrator whether that employee has resolved the exposed password or ignored it

For more information about BreachWatch or to schedule a demo visit keepersecuritycombreachwatch or email saleskeepersecuritycom

KEY FEATURES

bull Deploys to all Keeper users and informs them of passwords breached on the dark web

bull Maintains Keeperrsquos proprietary zero-knowledge cybersecurity platform architecture

bull Provides administrative oversight of users with risky passwords

bull Integrates with Keeperrsquos Advanced Reporting amp Alerts Module (ARAM) for drill-down reports and real-time alerts of BreachWatch-related alerts

bull Integrates with SIEM tools by sending the events from the userrsquos device for more analysis

Sources 1 Akami ldquoCredential Stuffing Attacks and Economiesrdquo April 2019 2 Pew Research Center ldquoAmericans and Cybersecurityrdquo January 2017

Amazon S3 Bucket

Splunk

IBM QRadar SIEM

Sumo Logic

16 copy 2019 Keeper Security Inc

17 copy 2019 Keeper Security Inc

Messaging Apps are a Major Security Risk to Your Business

bull Employee use of non-secure messaging apps opens the door to major privacy compliance and financial risks exposing the company to potential breaches

bull Most employers permit usage of personal phones yet lack a policy for

messaging which exposes their company to major damages

bull Other employers restrict all usage and forfeit the advantages of mobile

messaging which is possible with secure messaging

One data breach can cost your company millions Donrsquot let an employeersquos personal devices unknowingly damage your company and be tomorrowrsquos headline

Eliminate the risks associated with data leakage and unencrypted

communications

Empower employees to utilize mobile messaging and increase

productivity

Meet strict company compliance policies and internal controls

KeeperChat improves workplace communication and brings with it the highest level of privacy and security to messaging in the digital age Companies and organizations can purchase it as an add-on for their Keeper

Business or Keeper Enterprise account

The Most Secure Communication Product Available for SMBs SMEs and Large Enterprises

Do You Understand the Risk to Your Company

DATAS H EE T

KeeperChat for Business and Enterprise

18 copy 2019 Keeper Security Inc

Healthcare professionals law firms governments financial services and banking organizations require strict compliance to confidentiality when dealing with confidential patient client and an individualrsquos personally-identifiable information

Zero-Knowledge Encrypted Security

KeeperChat protects your information with 256-bit AES encryption and PBKDF2 widely accepted as the strongest encryption available It is built off zero-knowledge architecture meaning only the user has the ability to decrypt and access their information on their device

Customizable Role Enforcements amp Policies

KeeperChat is deployed and controlled via the Keeper Admin Console The console supports internal control polices and role enforcements for all KeeperChat accounts Mandate biometric logins when possible and lock down access with IP address whitelisting

Reliable Messaging amp Secure Cloud Backup

KeeperChat utilizes Amazon AWS to host and operate the encrypted Cloud Security VaultTM This provides reliable uptime and offers customers full backup binary files of their encrypted data

Cross-Platform Functionality amp Availability

KeeperChat runs on the platforms and devices used by employees today Employees can message from any smartphone tablet or computer even at the same time Message history syncs across all devices

Enhance Security with 2FA

Admins can enforce the use of two-factor authentication using a variety of secure enterprise-grade methods including Keeper DNAreg (patented smartwatch authentication) Google Authenticator RSA SecurID DUO Biometrics (fingerprint and facial recognition) and Secure SMS

Fast amp Dynamic Provisioning

KeeperChat offers a variety of provisioning methods for SMBs SMEs and large enterprises including email auto-provisioning synchronization with Active DirectoryLDAP and can even integrate with your existing Enterprise SSO solution

Powerful Messaging Control Messages can be retracted and self-destructed using a variable timer Entire conversations can be deleted and any shared files will not leave the app Only the permitted recipient has the ability to decrypt and access information on their device

Team amp Group Chats

Secure group chats ensure teamwork is secure efficient and avoids discussions becoming a security issue

Keeper Third-Party Attestations and Certifications

1 Growing Use of Consumer Messaging Apps Exposes Organizations to Privacy Compliance and Security Risks 451 Research

19 copy 2019 Keeper Security Inc

Messaging Apps are a Major Security Risk to Your Business

bull Employee use of non-secure messaging apps opens the door to major privacy compliance and financial risks exposing the company to potential breaches

bull Most employers permit usage of personal phones yet lack a policy for

messaging which exposes their company to major damages

bull Other employers restrict all usage and forfeit the advantages of mobile

messaging which is possible with secure messaging

One data breach can cost your company millions Donrsquot let an employeersquos personal devices unknowingly damage your company and be tomorrowrsquos headline

Eliminate the risks associated with data leakage and unencrypted

communications

Empower employees to utilize mobile messaging and increase

productivity

Meet strict company compliance policies and internal controls

KeeperChat improves workplace communication and brings with it the highest level of privacy and security to messaging in the digital age Companies and organizations can purchase it as an add-on for their Keeper

Business or Keeper Enterprise account

The Most Secure Communication Product Available for SMBs SMEs and Large Enterprises

Do You Understand the Risk to Your Company

DATAS H EE T

KeeperChat for Business and Enterprise

18 copy 2019 Keeper Security Inc

Healthcare professionals law firms governments financial services and banking organizations require strict compliance to confidentiality when dealing with confidential patient client and an individualrsquos personally-identifiable information

Zero-Knowledge Encrypted Security

KeeperChat protects your information with 256-bit AES encryption and PBKDF2 widely accepted as the strongest encryption available It is built off zero-knowledge architecture meaning only the user has the ability to decrypt and access their information on their device

Customizable Role Enforcements amp Policies

KeeperChat is deployed and controlled via the Keeper Admin Console The console supports internal control polices and role enforcements for all KeeperChat accounts Mandate biometric logins when possible and lock down access with IP address whitelisting

Reliable Messaging amp Secure Cloud Backup

KeeperChat utilizes Amazon AWS to host and operate the encrypted Cloud Security VaultTM This provides reliable uptime and offers customers full backup binary files of their encrypted data

Cross-Platform Functionality amp Availability

KeeperChat runs on the platforms and devices used by employees today Employees can message from any smartphone tablet or computer even at the same time Message history syncs across all devices

Enhance Security with 2FA

Admins can enforce the use of two-factor authentication using a variety of secure enterprise-grade methods including Keeper DNAreg (patented smartwatch authentication) Google Authenticator RSA SecurID DUO Biometrics (fingerprint and facial recognition) and Secure SMS

Fast amp Dynamic Provisioning

KeeperChat offers a variety of provisioning methods for SMBs SMEs and large enterprises including email auto-provisioning synchronization with Active DirectoryLDAP and can even integrate with your existing Enterprise SSO solution

Powerful Messaging Control Messages can be retracted and self-destructed using a variable timer Entire conversations can be deleted and any shared files will not leave the app Only the permitted recipient has the ability to decrypt and access information on their device

Team amp Group Chats

Secure group chats ensure teamwork is secure efficient and avoids discussions becoming a security issue

Keeper Third-Party Attestations and Certifications

1 Growing Use of Consumer Messaging Apps Exposes Organizations to Privacy Compliance and Security Risks 451 Research

19 copy 2019 Keeper Security Inc

Healthcare professionals law firms governments financial services and banking organizations require strict compliance to confidentiality when dealing with confidential patient client and an individualrsquos personally-identifiable information

Zero-Knowledge Encrypted Security

KeeperChat protects your information with 256-bit AES encryption and PBKDF2 widely accepted as the strongest encryption available It is built off zero-knowledge architecture meaning only the user has the ability to decrypt and access their information on their device

Customizable Role Enforcements amp Policies

KeeperChat is deployed and controlled via the Keeper Admin Console The console supports internal control polices and role enforcements for all KeeperChat accounts Mandate biometric logins when possible and lock down access with IP address whitelisting

Reliable Messaging amp Secure Cloud Backup

KeeperChat utilizes Amazon AWS to host and operate the encrypted Cloud Security VaultTM This provides reliable uptime and offers customers full backup binary files of their encrypted data

Cross-Platform Functionality amp Availability

KeeperChat runs on the platforms and devices used by employees today Employees can message from any smartphone tablet or computer even at the same time Message history syncs across all devices

Enhance Security with 2FA

Admins can enforce the use of two-factor authentication using a variety of secure enterprise-grade methods including Keeper DNAreg (patented smartwatch authentication) Google Authenticator RSA SecurID DUO Biometrics (fingerprint and facial recognition) and Secure SMS

Fast amp Dynamic Provisioning

KeeperChat offers a variety of provisioning methods for SMBs SMEs and large enterprises including email auto-provisioning synchronization with Active DirectoryLDAP and can even integrate with your existing Enterprise SSO solution

Powerful Messaging Control Messages can be retracted and self-destructed using a variable timer Entire conversations can be deleted and any shared files will not leave the app Only the permitted recipient has the ability to decrypt and access information on their device

Team amp Group Chats

Secure group chats ensure teamwork is secure efficient and avoids discussions becoming a security issue

Keeper Third-Party Attestations and Certifications

1 Growing Use of Consumer Messaging Apps Exposes Organizations to Privacy Compliance and Security Risks 451 Research

19 copy 2019 Keeper Security Inc

Consumer +1 312 971 5702 Business (Americas amp APAC) +1 312 226 4782 Business (EMEA) +353 21 229 6019

Support Americas amp APAC +1 312 829 2680 United Kingdom +44 20 3405 8853 Germany amp DACH +49 89 143772993

keepersecuritycom

Iberia amp Italy +34 919 01 65 13 Sweden amp Nordics +46 8 403 049 28

Business Sales

Ireland +353 21 229 6020 EMEA +353 21 229 6011

Netherlands +31 20 262 0932

saleskeepersecuritycom