Monthly Archives

September 2017

UI: The key to happy user experience in SSO solution

By | IDaaS | No Comments

The primary objective of Single Sign On is to enhance the experience of users. Ironically it is the UI of SSO from the industry that does not align with this basic objective. Users have to get used to a new experience that the SSO vender relates to. ILANTUS conducted a survey of 5400 users that conducted:

1. None of the SSO products provide a satisfactory user interface.
2. User would ideally like to have the same user experience as smartphones, something they mostly use.
3. User would like the user experience to be common across device: from laptop to mobile phone.
4. Majority of users felt apple is their most admired UI.

Ilantus, after is months of research has launched a brand-new UI on its latest generation IDaaS solution called “IDaaS Next”. This confirms to the wish list of users as discovered in the survey.

 

One Login hacked: Raises questions on selection of SSO Solutions

By | IDaaS | No Comments

Password Manager and Single Sign-On provider Onelogin recently got hacked. Company’s chief Security officer Alvaro Hoyos said it is working with law enforcement. Onelogin believes that all customers served by its US data centers are affected and customer data was potentially compromised.

It said “Our review has shown that a threat actor obtain access to a set of keys and used them to access the AWS API from an intermediate host with another, smaller service provider In the US.”

The above kind of increasing incidents clearly show there is a need to review the following while selecting a SSO solutions:

  • The data centers used by intermediate host (if any) of SSO solution providers.
  • Whether SSO solution is to be used in traditional “In premise” rather than cloud mode.
  • For information ILANTUS uses only Microsoft Azure and no intermediate hosts. ILANTUS also provides both cloud and In premise models.

Equifax hack & Weak Password Management

By | IDaaS, Xpress Password | No Comments

Researchers found more than 388 records of Equifax user and employee end point data being available for sale on the dark web. This data includes user name, title, password and login url.

Many of the company executives used simple password that could be easily guessed.

A robust password policy beyond what AD offers and higher levels of authentication can be obtained only by using a “comprehensive Enterprise Password Management System”, Such as ILANTUS “IDaaS Next Xpress Password”

Benefits of SSO

By | IDaaS | No Comments

With so many business applications it is not unusual for people to need to log in to five, ten, even twenty websites every day! Remembering that many passwords can get tricky. A single sign-on system is a secure and efficient solution to the “too many passwords to remember!” problem. Here are 4 benefits for businesses that implement a Single Sign-On (SSO) solution:

Single Sign-On Saves Money on Help Desk Expenses
An estimated 50% of all help desk inquiries are for password reset requests! As websites and applications require increasingly stronger passwords which include a combination of upper and lowercase letters, numbers, and symbols, users are finding it increasingly difficult to remember their passwords. If people only need to remember a single password, the number of help desk inquiries for password reset requests will decrease, saving you money on your help desk expenses. Managing passwords for a large organization with multiple applications is time consuming – and a headache for your IT guys. If your IT department is spending too much time resetting passwords and other security credential tasks, they’re not spending enough time on more productive activities.

Single Sign-On Increases Security
At first, it may seem having a single password per user is less secure, since if the password is stolen, all of the connected applications are then at risk. When an organization uses a single sign-on solution, and users are only required to remember one password, they can make that password very strong (and therefore, unlikely that anyone could guess it), and instead of having a notebook full of passwords that could get into the wrong hands – they just have a single password to keep confidential. Additionally, SSO makes it more likely employees will use a secure file transfer system, which is especially important for industries dealing with HIPAA or PCI-DSS regulations. Employees often look for workaround methods for these applications as they can be difficult to login. With a single-sign on, you at least remove the barriers of entry for your team and help improve security and compliance requirements.

SSO Makes Customers Happy
When you create a user-friendly login process to your website or software application, you improve customer satisfaction right from the start. Many websites currently offering SSO are social networking sites or Web 2.0 sites which put a lot of value on the experience of their end users. The easier it is for your customers or prospects to log into your site, the happier they are and more likely they are to refer you to others.

Single Sign-On Increases Efficiency and Productivity The number one benefit of an SSO solution is that it increases the efficiency and productivity of your team. When people don’t have to flip through pages of usernames and passwords to try and find the right combination for the application they need to use, the time savings will add up. Not to mention, if the passwords are typed incorrectly more than three times, most websites will lock the user out which requires a call to the help desk to reset the password and start all over. All of this time is causing a loss of productivity when a single sign-on solution would have allowed instant access to the application the employee needed so he or she could get right to work.

History of Identity & Access Management

By | IDaaS | No Comments

ILANTUS and Identity management were born almost together, in the year 2000. During late 90s administrative work around granting and revoking applications was beginning to get very complex. The rapid growth of web applications made access and integration from “outside the firewall” possible, opening new challenges in secure access as information access was increasingly being given to outsiders, requiring even more careful control. US government legislation in 2002 on SOX added to the demand of IAM technology. Identity management was thus born as a backend, administrative application to provide a solution to these challenges.

The 1st generation product companies in IAM evolved to some point by year 2004. While there where many product companies emerging, ILANTUS was one of the 1st to cater to the implementation of the technology that would ensure good results for the customer. As the domain grew to a decent size it was noticed by large players like IBM, CA, Oracle. As it has been the trend in IT industry larger companies began acquiring the first generation companies. By 2006 the acquisitions were completed. The first acquisition in the domain was of “Control SA” by BMC Corporation. (BMC sold their web access management in 2009 and their life cycle management to Sailpoint in the spring of 2011.)

The 2nd generation of IAM hence began with IBM, Oracle, CA acquiring smaller players. CA soon after acquired “Eurekify” and Oracle did the same with “Sun role manager”, to strengthen role management function that was gaining increasing importance. the former CTO of Netegrity, pioneers in web access management acquired by CA in 2005, Deepak Taneja in 2007 brought the first real Access Governance product by forming a company called Aveksa, meaning (care, observation and attention, in Sanskrit). As the name suggests Access Governance technology was about observing and to be attentive to the application access.

ILANTUS was one of the first service providers for Aveksa and Eurekify. Customers were finding it increasingly difficult to manage these technologies after implementation. In response to this need ILANTUS announced a cost-effective and high-quality managed services for IAM in 2007. Till today it remains one of the best offerings of ILANTUS services division. Single sign-on was an increasing need but a poor solution, having gone through multiple phases of acquisition of small companies by the Giants. Both demand and discontent from available IAM technologies were also increasing. This led to the emergence of the 3rd generation of IAM in 2011, offering multi tenanted solution that claimed to offer instant gratification. This was called IDAAS ( Identity as a Service). As market showed interest in IDAAS, the large players and their partners offered “old wine in new bottle”, by improving user interface and offering their earlier solution in the Private cloud. New age vendors like Okta, Onelogin, Centrify took on to build pure IDAAS from ground up. Meanwhile Single sign on became a must technology for most organisations as number of applications and devices used by an employee had grown almost exponentially. This demand gave Pure IDAAS a perfect platform to grow, more so as the earlier SSO solutions were far from satisfactory. Unfortunately pure IDAAS companies are still not able to provide a comprehensive solution to deeper areas like “User life cycle management” and “Access Governence”. While larger venders do have solution to these areas they have somewhat outdated architecture and thus long and expensive delivery cycles.

Venders like ILANTUS are trying to fulfil the need to provide a solution that is deep enough while economical and quick enough to implement. This will be the next generation of IDAAS. Products like “IDAAS >”, the latest introductions to the industry may fill in that need.

Managing identity has become one of the most urgent needs for most corporations in the digital world. The domain is fast shifting from “ Information Security” to “ IT Infrastructure”. It is time industry offers solution that will fulfil the need of Identity Management.

Dreaming the Ultimate:”IDAAS>”

By | IDaaS | No Comments

We are a small company with less resources than perhaps a tiny business unit of IBM. But that does not deter us from dreaming big. We are committed to change the way Identity Management is seen, implemented and supported. We have existed for 17 years with one dream: To enable the world, its people and companies manages Identities better. We have seen promises being made by IDM companies during 2000-2004, then again from 2005 to 2012 and again after…, to make Identity management simpler, quicker and more economical. Reality is, this has never happened. The promises have only helped a few companies to fill their pockets while they have filled minds of user organizations with empty dreams.

We are committed to change the way this domain is seen, touched and felt. With “IDAAS>“, the next generation application. with IDaaS > we have reached closer to our dream.

The corporate world has always been divided between dreamers and realists. If your organization has dreamt of an Identity Management Solution that will be simple, easy, economical… take a serious look at ILANTUS.

Identity as a Service | What is “IDaaS”

By | IDaaS | No Comments

 

Identity as a Service (IDaaS) delivers identity management tools on demand via the internet in a simple and efficient way. However, are companies truly delivering tools specifically designed with the benefits of a cloud deployment or are vendors jumping on the cloud bandwagon and delivering “old wine in a new bottle?” One giant IT software provider is repackaging their decade old solution to replicate the look and feel of the cloud service. Another company is delivering a cookie cutter approach: deliver 50% of the easy stuff while ignoring the more complex aspects of the software that would require a larger effort to deliver with smaller return on their investment.

After five long years of development, IDaaS still touches only the tip of the iceberg without fulfilling the real needs. For instance, Single Sign-On can only reach web/cloud applications; User Life Cycle management techniques cannot map more than 80% of processes and all the non-web complex applications; Governance that is truly yet to begin. To add to all this, the promise of delivering in a manner for users has not been fulfilled at all not to mention the ever increasing price points. This is not true IDaaS. ILANTUS’s latest development, “IDaaS 4U,” promises to offer true IDaaS that will fulfill the “real needs” rather than the hyped ones created by vendors.