TMCnet InfoTech Spotlight: Combining Federated Identity Management with Dynamic Authorization
The virtualization of nearly everything digital is pushing more and more applications, services, storage, and compute to the cloud, now including real time communications (voice, video, messaging, collaboration) and combinations of connected machines and humans.
Enterprises, governments, and individuals are operating in continuous contact, in an increasingly real time or near real time world of contextually rich working and living.
A desire for instant gratification by digital workers, including executives who travel globally and want to be able to access corporate data, services and applications from anywhere at any time on any device, is driving CIOs, IT and OT teams to rethink their security approaches; they need to enable productivity, but without putting sensitive data and confidential information at risk.
According to Grand View Research, the Identity and Access Management (IAM) market, which is tackling growing and more complicated challenges in this multi-cloud world will be worth over $22 Billion by 2025, representing a CAGR of over 12%.
“Spiraling adoption of cloud services and mobile devices and emergence of insider threats combined with strict compliance necessities are leading to increased spending on organization IT security, which is estimated to stoke the growth of the market,” their September 2018 report says.
Grand View also predicts that cloud will “be the most promising segment during the forecast period. Cloud is changing the way a business operates. It facilitates a different level of cost-benefit, flexibility, and efficiency to carry out business functions. Moreover, it also provides organizations an opportunity to transform their business models and gain a competitive edge over their competitors. Managing identities and accessing control for enterprise applications act as one of the prominent challenges faced by IT.”
Grand View’s press release on the report also states “Extending a company’s identity services into a/the cloud model is a notable requirement for use of on-demand computing services in the long run. Various cloud delivery models such as SaaS (News – Alert), PaaS, and IaaS call for service providers and IT departments to extend organization’s IAM processes, practices, and procedures to cloud services that are efficient and scalable for customers and providers. Utilizing more cloud-based services puts IT security function on the forefront of a company’s planning activities, which is likely to drive the market over the forecast period.”
Axiomatics’ Vice President of Business Development, Gerry Gebel, believes the future of IAM will include an increased focus on externalized dynamic authorization – also known as Attribute Based Access Control (ABAC). “Our customers across industries are working with a range of cloud service providers, and as they continue to move more and more to the cloud, they are confronted with new data and systems security challenges,” Gebel said. “In a more fluid and open world, including applications that depend on API calls, maintaining the protection of assets while also ensuring information is shared with the right people, at the right time, and under the right conditions has become more difficult.”