Identity and Access Management
CyberArk Identity Security Platform
With a focus around privileged access management, the CyberArk Identity Security Platform provides secure access for all applications and across both cloud and on-premises environments. Recent updates to the platform have included new offerings such as Dynamic Privileged Access for provisioning access hybrid and cloud workloads that is “just in time,” lowering the risk of standing access. Other updates have included Secure Web Sessions, which provides added security for access to browser-based applications that are considered high-risk; Lifecycle Management for Privileged Users, which speeds up employee onboarding; and cloud-native shared services such as a unified identity management, authentication and authorization layer.
Recent enhancements to Cisco Duo have included updates to its Duo Network Gateway that enable automatic deployment in Amazon Web Services; the addition of Duo Trust Monitor, which uses machine learning to detect anomalous behavior while analyzing access; and a cloud-delivered single sign-on solution for rapid enablement of secure application access.
Ivanti Neurons for Zero Trust Access
Key capabilities for the Ivanti Neurons for Zero Trust Access solution include authentication of user identity and device security posture prior to initiating a session; self-securing and self-healing capabilities; and user behavior analytics that enable proactive action around security risks.
JumpCloud Protect enables easier deployment and enforcement of multi-factor authentication (MFA). The solution, which is available for iPhone and Android devices, offers MFA for identity verification based on criteria including location, device trust, network trust and step-up challenges that are specific to the application.
Ping Identity: PingOne Cloud Platform
The recently launched PingOne Cloud Platform provides a single location for managing all Ping Identity products and services. Components of the platform include PingOne for Customers, which provides options such as single sign-on and multi-factor authentication, and PingOne for Workforce for connecting employees, contractors or partners to resources using cloud authentication and single sign-on access.
An RSA business, SecurID brings passwordless sign-in options that support multi-factor authentication such as mobile push-to-approve, FIDO2 security keys and biometrics. Key enhancements include cloud management of one-time passcode hardware tokens, in addition to management through on-premises systems.
Transmit Security: BindID
Transmit Security’s BindID is an app-free authenticator that leverages device-based biometrics for customer authentication, eliminating the need for passwords. The solution works by leveraging shared trust at the user, device and network levels, enabling other biometric-enabled devices to be associated with accounts.