11.30.2018 - HTTP Header Session Protection
The HTTP protocol was designed as a transport protocol to fetch and return content and to display HTML or other functions. But, HTTP wasn’t designed with authentication security top of mind. Approximately 40% of data breaches originate from attacks on web apps. And many of these breaches are preventable. HTTP header session protection as a part of your SSO solution should be at the forefront of your mind. ...
05.31.2018 - Protecting Your Patient’s PHI Data (Part 2 of 2)
In part one of our protected health information (PHI) series, we described why a hacker is interested in PHI and how they get it. In part two, we will cover ways to defend PHI data and best practices for mitigating attacks. ...
05.22.2018 - Protecting Your Patient’s PHI Data (Part 1 of 2)
For healthcare, there’s never been a more urgent time to reassess your cybersecurity and identity and access management strategy. Until recently, protected health information (PHI) was the most valuable merchandise on the Dark Web. Complete healthcare records were going for $75 to $100 dollars at the height of demand according to Institute for Critical Infrastructure Technology (ICIT). In fact, there’s so much PHI on the market now that the ICIT says prices have plummeted by about half. ...
05.2.2018 - Know Your Credentials: The Other KYC Requirement
The way people want to interact with their financial providers has changed quickly in the past few years. Now, account holders want control over their funds, and they don’t want to jump through hoops to exert that control. They expect a streamlined customer experience that lets them accomplish their tasks quickly, and there are great rewards to be reaped by institutions able to meet those expectations. For example, according to PwC’s 2017 Digital Banking Consumer Survey, 46 percent of consumers do all their banking online, a percentage that will grow even larger as the first generation of digital natives—those graduating high school around now—enter their adult lives and establish relationships with banks and investment firms. ...
04.25.2018 - Agentless SSO – What’s The Big Deal?
SSO, or single sign-on, as a desired end-state for the user experience as they connect to a diverse set of applications reaps many advantages. There are multiple methods and architectures for achieving SSO, but one that should interest just about every customer is agentless SSO. ...
03.31.2018 - Password Security – MFA and Agentless SSO Explained: Cyber Defense Magazine
Author: Mark Foust, Director of Worldwide Technical Sales for Optimal IdM ...
03.26.2018 - Privileged Access Management 101
Privileged access management solutions will be beneficial if you use them correctly. This includes: ...
03.22.2018 - Identity Blockchain: Identity Trust Fabric
While blockchain is the latest buzz in authentication and authorization, it does promise to offer consumers improved control over their digital identities, as well as add more security. Its most significant challenge in becoming a reality is the establishment of a digital trust foundation, or an identity trust fabric (ITF). ...
03.12.2018 - RealMe Integration Services from Optimal IdM
Wouldn’t it be nice if you could use a single login ID to renew your passport and driver’s license, see when mail was coming and pay government taxes all online? Well, if you’re from New Zealand, you may already be doing that and more with a service called RealMe. New Zealand’s Government is using RealMe to eliminate red tape and make doing things online easier and safer for individuals. If you’re interested in safe access management, contact Optimal IdM today or request a free trial of our IAM software. ...
03.6.2018 - The Barriers to Entry for Blockchain
In part one of our Identity Blockchain blog series, we discussed the fundamentals of blockchain and why establishing trust is a key factor making it work. ...