04.26.2019 - Does My Business Need Cloud Security?

If you have a business with sensitive information to protect, you may be wondering, “should my business use cloud security?” What distinguishes ‘cloud security’ from ‘on-premise’ security. Cloud security is a term for security technologies that leverage the power of the cloud. These advantages could be based on cloud-scale (ability to immediately provision more units to bear on a problem), pattern recognition (using a form of complex algorithms and/or A.I. to discover some type of intelligence about an alleged attack), identity proofing (ability to verify the digital identity can verify who they are by comparing them to known identities on other trusted external databases and networks), authentication assurance (ability to confirm access to applications/resources based on multiple proofs of who you know, what you possess or who you are), etc. ...

02.18.2019 - Mergers, Acquisitions and Divestitures – How to Unite Your Active Directories

CIOs that are under pressure to bring two companies’ IT systems and applications together after a merger or acquisition can unify their directory services quickly and inexpensively with a Virtual Identity Server. This paper looks at three of the leading approaches to bridging disparate sets of directory services into one seamless directory following a merger or acquisition. Conversely, we’ll look at the aspect of a divestiture, in which one company must entirely split out from another. Here, too, directory services play a role in a clean and quick divestiture or spin-off. ...

02.6.2019 - European Identity & Cloud Conference Ticket Giveaway

Optimal IdM is giving away tickets to the conference! Win one of three free tickets to the entire conference and workshop sessions. Participation is free of charge and the closing date for entries is April 19, 2019. Winners will be notified by e-mail and/or by phone. ...

01.17.2019 - Typing Biometrics and Other Multi-Factor Authentication Methods: When Passwords Are Not Enough

81% of data breaches are from weak, default or stolen passwords. Leveraging MFA when it’s offered lessens the attack vector for digital identity impersonation attempts. This paper looks at existing MFA options, including biometric typing technology, examines decision factors for MFA and discusses the difference between various authentication methodologies. ...

11.30.2018 - HTTP Header Session Protection

The HTTP protocol was designed as a transport protocol to fetch and return content and to display HTML or other functions. But, HTTP wasn’t designed with authentication security top of mind. Approximately 40% of data breaches originate from attacks on web apps. And many of these breaches are preventable. HTTP header session protection as a part of your SSO solution should be at the forefront of your mind. ...

09.10.2018 - Identity And Access Management Solutions: Build vs. Buy

The build versus buy dilemma is one that nearly every company debates internally. This discussion often surfaces when the I.T. department wants to consider a purchase for software that either the in-house developers or CIO feels could be done in house. Why pay for what you can do yourself? Unfortunately, life is not that simple. There are a number of variables that should drive this discussion. I’ll share three (3) considerations here and have you refer to the Optimal IdM whitepaper, “Build vs. Buy – Identity And Access Management Solutions”, for a more detailed look. ...

Tags

  • The database in which all of your organization’s sensitive identity data is stored.
  • A digital ledger in which digital transactions are recorded chronologically and publicly.
  • Securely managing customer identity and profile data, and controlling customer access to applications and services.
  • The means of linking a person's electronic identity and attributes, stored across multiple distinct identity management systems.
  • A legal framework that sets guidelines for the collection and processing of personal information of individuals within the EU.
  • The policy-based centralized orchestration of user identity management and access control.
  • An authentication infrastructure that is built, hosted and managed by a third-party service provider.
  • A security system that requires more than one method of authentication from independent categories of credentials to verify the user's identity for a login or other transaction.
  • A global provider of innovative and affordable identity access management solutions. 
  • Managing and auditing account and data access by privileged users.
  • Tools and technologies for controlling user access to critical information within an organization.
  • An authentication process that allows a user to access multiple applications with one set of login credentials.