09.1.2021 - Authentication vs. Authorization

authorized user

In the world of identity and access management, you may have heard the terms “authentication” and “authorization.” You may have often heard them mentioned as if they were a single process — “authentication and authorization.” But are they the same thing? What’s the difference between authentication and authorization, if any?

08.20.2021 - How Data Breaches Happen

person getting hacked

Words that are probably only spoken in hushed tones around your office are “data breach.” A data breach can be disastrous for a company. Typically, one results in the theft of either company data, personal information of customers such as credit card numbers, names and email addresses or both. Even a data breach that’s caught quickly can require an expensive cleanup, and one that’s allowed to go on for any reasonable length of time can cost companies millions and ruin their reputation.

06.22.2021 - The Breach That Didn’t Have to Happen

colonial pipeline ransomware

15 billion passwords are for sale on the dark web. Some of them belong to you. Multi-factor authentication renders those stolen passwords useless even if they’re still valid in your system.

03.31.2021 - 8 Ways SMBs Can Improve Cybersecurity

8 ways small to mid size businesses can improve cybersecurity

Cybercrimes and data breaches are a growing threat for businesses. In total, cybercrimes are predicted to inflict upwards of 6 trillion USD globally in 2021, and the cost of cybercrime is expected to grow by 15% each year within the next five years. Small and medium-sized businesses (SMBs) aren’t immune to these threats — according to one report, 15% of small businesses suffered a virus, leak or hack in 2019…

02.11.2021 - Identity as the New Perimeter of Security

barbed wire fence

There was a time when all of a company’s data was completely on the premises. Even an employee who needed to work remotely would use a VPN to get into the company’s on-premise physical network. This was an environment with many fewer challenges to authentication security. Everyone who was in a position to access a company’s data was someone who was supposed to be there, so as long as the building’s physical security was strong, cybersecurity would be strong as well. ...

01.8.2021 - Types of Data Breaches

Silhouette of a hacker, Male thief typing password on virtual screen - computer hacker

If you’re responsible for managing your company’s cybersecurity, you know that one of the biggest threats you need to address is the possibility of a data breach. A data breach can spell disaster for any company, and no company is entirely safe. Some of the biggest companies in the world have been the victims of data breaches, and it has cost them millions — sometimes even billions. Even a small, brief data breach can be catastrophic for your bottom line and your reputation. So what types of data breaches should you be on the lookout for? ...

10.8.2020 - The Forrester Wave: Customer Identity and Access Management, Q4 2020

The report helps security and risk (S&R) professionals select the right vendor for their needs. The 13 most significant CIAM vendors are evaluated who include “…a thought-leading, productized portfolio of products and services. According to the report, “[Forrester] included CIAM vendors that demonstrated thought leadership and solution strategy execution by regularly updating and improving their productized product and model portfolio. Customers of vendors had to report that the solution is purpose-built for customer-facing identity and access management. ...


  • The database in which all of your organization’s sensitive identity data is stored.
  • A digital ledger in which digital transactions are recorded chronologically and publicly.
  • Securely managing customer identity and profile data, and controlling customer access to applications and services.
  • The means of linking a person's electronic identity and attributes, stored across multiple distinct identity management systems.
  • A legal framework that sets guidelines for the collection and processing of personal information of individuals within the EU.
  • The policy-based centralized orchestration of user identity management and access control.
  • An authentication infrastructure that is built, hosted and managed by a third-party service provider.
  • A security system that requires more than one method of authentication from independent categories of credentials to verify the user's identity for a login or other transaction.
  • A global provider of innovative and affordable identity access management solutions. 
  • Managing and auditing account and data access by privileged users.
  • Tools and technologies for controlling user access to critical information within an organization.
  • An authentication process that allows a user to access multiple applications with one set of login credentials.