Identity and access management

Identity is often considered the perimeter in infosec, especially as traditional enterprise perimeters dissolve. Identity and access management is critical to maintain data security. From passwords to multifactor authentication, SSO to biometrics, get the latest advice on IAM here.

Top Stories

Tutorial 14 Apr 2025
How to create custom sudo configuration files in /etc/sudoers

Sudo offers administrators a lot of flexibility. Creating custom sudo configurations can go a long way toward easing management and service upgrade challenges. Continue Reading
By
- Damon Garn, Cogspinner Coaction
Opinion 09 Apr 2025
Data security and identity security themes at RSAC 2025

Check out what Enterprise Strategy Group analyst Todd Thiemann has on his agenda for RSA Conference 2025. Continue Reading
By
- Todd Thiemann, Senior Analyst
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.

Tip 01 Nov 2021
Adopt 5 best practices for hybrid workplace model security

As hybrid workforce models become the norm due to the pandemic, enterprises should look to best practices to ensure secure unified access for on-premises and WFH employees. Continue Reading
By
- Johna Till Johnson, Nemertes Research
Definition 27 Oct 2021
Digital Signature Standard (DSS)

The Digital Signature Standard (DSS) is a digital signature algorithm (DSA) developed by the U.S. National Security Agency (NSA) as a means of authentication for electronic documents. Continue Reading
By
- Katie Terrell Hanna
Definition 30 Sep 2021
RADIUS (Remote Authentication Dial-In User Service)

RADIUS (Remote Authentication Dial-In User Service) is a client-server protocol and software that enables remote access servers to communicate with a central server to authenticate dial-in users and authorize their access to the requested system or service. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
Definition 29 Sep 2021
CHAP (Challenge-Handshake Authentication Protocol)

CHAP (Challenge-Handshake Authentication Protocol) is a challenge and response authentication method that Point-to-Point Protocol (PPP) servers use to verify the identity of a remote user. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
Definition 23 Sep 2021
digital certificate

A digital certificate, also known as a public key certificate, is used to cryptographically link ownership of a public key with the entity that owns it. Continue Reading
By
- Mary E. Shacklett, Transworld Data
- Peter Loshin, Former Senior Technology Editor
Definition 21 Sep 2021
key fob

A key fob is a small, programmable device that provides access to a physical object. Continue Reading
By
- Rahul Awati
- Diana Hwang
Definition 16 Sep 2021
shadow password file

A shadow password file, also known as /etc/shadow, is a system file in Linux that stores encrypted user passwords and is accessible only to the root user, preventing unauthorized users or malicious actors from breaking into the system. Continue Reading
By
- Rahul Awati
Tip 01 Sep 2021
Blockchain for identity management: Implications to consider

Blockchain has changed the way IAM authenticates digital identities. Consider these 14 implications when asking how and where IAM can benefit your organization. Continue Reading
By
- Jessica Groopman, Kaleido Insights
Definition 20 Aug 2021
nonrepudiation

Nonrepudiation ensures that no party can deny that it sent or received a message via encryption and/or digital signatures or approved some information. Continue Reading
By
- Rahul Awati
Guest Post 05 Aug 2021
3 steps to create a low-friction authentication experience

Passwords are no longer sufficient, but more secure authentication methods frustrate users. Explore how to create a low-friction authentication process for improved UX and trust. Continue Reading
By
- Tricia Phillips
Tip 03 Aug 2021
10 ways blockchain can improve IAM

DLT has the potential to revolutionize the identity management space. From boosting privacy to improving visibility, here are 10 use cases of blockchain in IAM. Continue Reading
By
- Jessica Groopman, Kaleido Insights
Tip 03 Aug 2021
Federate and secure identities with enterprise BYOI

Consumers have been using the federated identity concept 'bring your own identity' through social sign-on for years. It is time for the enterprise to embrace the trend. Continue Reading
By
- Diana Kelley, SecurityCurve
Feature 30 Jul 2021
Keycloak tutorial: How to secure different application types

IT pros and developers can secure applications with the open source IAM tool Keycloak. When you don't need to worry about passwords, it reduces the potential attack surface. Continue Reading
By
- Kyle Johnson, Technology Editor
- Packt Publishing
Feature 30 Jul 2021
Secure applications with Keycloak authentication tool

As we look toward the future of authentication, open source tools, such as Keycloak, provide companies a way to secure applications to its specific needs. Continue Reading
By
- Kyle Johnson, Technology Editor
Tip 27 Jul 2021
Use a decentralized identity framework to reduce enterprise risk

To reduce the risk of identity theft for customers, partners and employees, companies should look at integrating a decentralized identity framework into existing infrastructure. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Tip 12 Jul 2021
How to implement machine identity management for security

In IAM, companies must consider whether machines, applications and devices have the appropriate identities and access authorizations when communicating behind the scenes. Continue Reading
By
- Michael Cobb
Feature 12 Jul 2021
5 IAM trends shaping the future of security

The importance of identity and access management cannot be denied. However, the same old tools can't properly secure today's complex environments. These IAM trends are here to help. Continue Reading
By
- Kyle Johnson, Technology Editor
Quiz 01 Jul 2021
Test yourself with this e-learning authentication quizlet

Integrity and authentication are two evergreen security topics. Try this quick quiz from Technic Publication's PebbleU, and see where to focus your continuing education. Continue Reading
By
- Technics Publications, Technics Publications
Feature 08 Jun 2021
How cloud adoption is shaping digital identity trends in 2021

Expert Carla Roncato explains what organizations need to know about emerging digital identity and security trends for the cloud, including CASB, CIEM and zero trust. Continue Reading
By
- Katie Donegan, Social Media Manager
Tip 07 Jun 2021
Corral superuser access via SDP, privileged access management

Keeping control of superusers is an ongoing challenge. Employing SDP and privileged access management can make the job easier. But can SDP replace PAM? Continue Reading
By
- John Burke, Nemertes Research
Quiz 25 May 2021
Try this cloud identity and access management quiz

Remote work and increased cloud adoption have dramatically changed identity and access management. Take this cloud IAM quiz for infosec pros to see if your knowledge is up to date. Continue Reading
By
- Katie Donegan, Social Media Manager
News 14 May 2021
'Scheme flooding' bug threatens to sink user privacy

Researchers have uncovered a blind spot in web security that opens the door for tracking across multiple browsers and thwarts common privacy protections like incognito and VPN. Continue Reading
By
- Shaun Nichols
Tip 15 Apr 2021
Get to know cloud-based identity governance capabilities

As enterprise cloud adoption increases, the market for cloud identity governance is expected to expand. Learn more about the use cases, benefits and available product options. Continue Reading
By
- Dave Shackleford, Voodoo Security
News 05 Apr 2021
Remote work increases demand for zero-trust security

One year after lockdowns and office closures prompted a massive, hurried move to remote work, many enterprises are reexamining their security posture. Continue Reading
By
- Arielle Waldman, News Writer
News 04 Mar 2021
Microsoft makes passwordless push in Azure Active Directory

To adapt to security challenges like remote work and increasingly sophisticated threats, Microsoft is building a passwordless ecosystem within Azure Active Directory. Continue Reading
By
- Arielle Waldman, News Writer
News 04 Mar 2021
Okta acquires identity rival Auth0 for $6.5 billion

Okta CEO Todd McKinnon said Auth0 shares his company's vision to establish identity services as one of the 'primary clouds' for enterprises, such as IaaS and collaboration. Continue Reading
By
- Rob Wright, Senior News Director
Podcast 12 Feb 2021
Risk & Repeat: Oldsmar water plant breach raises concerns

This week's Risk & Repeat podcast looks at how an unknown threat actor used TeamViewer to manipulate chemical levels in a water treatment facility in Oldsmar, Fla. Continue Reading
By
- Rob Wright, Senior News Director
Tip 08 Feb 2021
7 privileged access management best practices

Privileged access is a given in enterprise environments, but it presents many security issues if breached. Follow these seven PAM best practices to mitigate risk. Continue Reading
By
- Ashwin Krishnan, StandOutin90Sec
Guest Post 29 Jan 2021
The security battle over entitlements and permissions creep

IT must continually keep track of entitlements and permissions for all their cloud services, with methods such as CI/CD tools, increased visibility and continuous monitoring. Continue Reading
By
- Raj Mallempati
News 26 Jan 2021
Zero trust 2.0: Google unveils BeyondCorp Enterprise

BeyondCorp Enterprise, which replaces Google's BeyondCorp Remote Access, uses the Chrome browser to extend the zero-trust platform to customers for continuous authentication. Continue Reading
By
- Rob Wright, Senior News Director
News 20 Jan 2021
FireEye releases new tool to fight SolarWinds hackers

The new tool, dubbed Azure AD Investigator, will help audit Microsoft 365 environments for techniques used by the nation-state actors behind the SolarWinds supply chain attack. Continue Reading
By
- Arielle Waldman, News Writer
Tip 14 Jan 2021
Select a customer IAM architecture to boost business, security

Not all customer IAM platforms are created equal. Will a security-focused or marketing-focused CIAM architecture best meet your organization's needs? Read on for help deciding. Continue Reading
By
- Mike Chapple, University of Notre Dame
News 11 Jan 2021
5 cybersecurity vendors to watch in 2021

Despite the COVID-19 pandemic and economic setbacks, 2020 was another big year for investments in cybersecurity vendors. Here are five startups that stood out from the crowd. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 11 Jan 2021
Biometric security technology could see growth in 2021

Enterprise use of biometrics for security may see an uptick by organizations looking to defend themselves from attacks, but they must weigh the concerns against the benefits. Continue Reading
By
- Mary K. Pratt
News 07 Jan 2021
Defending against SolarWinds attacks: What can be done?

While no defense is guaranteed, zero-trust access and behavioral monitoring can be useful against nation-state hackers and threats like the SolarWinds attacks. Continue Reading
By
- Arielle Waldman, News Writer
Tip 06 Jan 2021
Organize a cloud IAM team to secure software-defined assets

Building a cloud IAM team with the necessary technical expertise and soft skills is key to securely managing IAM in complex cloud environments. Continue Reading
By
- Dave Shackleford, Voodoo Security
News 28 Oct 2020
Ping Identity launches passwordless authentication system

Ping's new suite of authentication features looks to secure accounts and login processes by eliminating the need for usernames and passwords, which are often reused and an easy target. Continue Reading
By
- Arielle Waldman, News Writer
Quiz 05 Oct 2020
Quiz: Network security authentication methods

There are many methods available to authenticate users requesting access to an organization's systems. Test your knowledge with this quiz on authentication in network security. Continue Reading
By
- Katie Donegan, Social Media Manager
Feature 29 Sep 2020
Explore self-sovereign identity use cases and benefits

The future of digital identity may look a lot like how we identify ourselves in real life. Learn more about self-sovereign identity use cases and features in this excerpt. Continue Reading
By
- Katie Donegan, Social Media Manager
- Manning Publications Co.
Feature 29 Sep 2020
How self-sovereign identity principles suit the modern world

There are several core self-sovereign identity principles to consider before the concept can benefit the enterprise. Learn about the implications of SSI advancements in this Q&A. Continue Reading
By
- Katie Donegan, Social Media Manager
News 15 Sep 2020
Gartner: Privileged access management a must in 2020

Gartner's 2020 Security & Risk Management Summit focused on the importance of privileged access management to cybersecurity as threat actors increasingly target admin credentials. Continue Reading
By
- Alexander Culafi, Senior News Writer
Answer 10 Sep 2020
Manage unsuccessful login attempts with account lockout policy

Learn how to create account lockout policies that detail how many unsuccessful login attempts are allowed before a password lockout in order to prevent credential-based attacks. Continue Reading
By
- Katie Donegan, Social Media Manager
- Randall Gamby, HP
Tip 31 Jul 2020
6 persistent enterprise authentication security issues

Some authentication factors are considered more secure than others but still come with potential drawbacks. Learn about the most common enterprise authentication security issues. Continue Reading
By
- Katie Donegan and Paul Strassmann
News 18 Jun 2020
New Cisco Webex vulnerability exposes authentication tokens

Trustwave SpiderLabs researchers disclosed a vulnerability in Cisco Webex software that leaks information stored in memory, including authentication tokens. Continue Reading
By
- Arielle Waldman, News Writer
Tip 11 Jun 2020
3 key identity management tips to streamline workflows

Organizations must audit IAM processes to ensure that opportunities to streamline workflows are not missed. Use these identity management tips to get started. Continue Reading
By
- Mike Chapple, University of Notre Dame
Tip 09 Jun 2020
How to ensure security for 3 types of digital identity

Enterprise identity and access management strategies must include processes for managing and securing three types of digital identity. Learn how. Continue Reading
By
- Ashwin Krishnan, StandOutin90Sec
Tip 03 Jun 2020
4 essential identity and access management best practices

Now is the time to shore up the who, what and where of network identities. Adopt these four critical identity and access management best practices to bolster your infosec program. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
Feature 27 May 2020
Top 3 advantages of smart cards -- and potential disadvantages

As smart card adoption increases, it is prudent to take a closer look at how this technology can improve data security. Here, read more about the benefits of smart cards. Continue Reading
By
- Katie Donegan, Social Media Manager
- Joel Snyder, Opus One
News 23 Apr 2020
COVID-19 strains critical certificate authority processes

Border crossings. Police checkpoints. Security cages. Secret safes. These are just some of the hurdles certificate authorities face as they strive to maintain security during COVID-19. Continue Reading
By
- Rob Wright, Senior News Director
News 08 Apr 2020
Researchers beat fingerprint authentication with 3D printing scheme

New research by Cisco Talos shows popular fingerprint scanning technology can be defeated by lifting actual fingerprints and reproducing them through 3D printers. Continue Reading
By
- Arielle Waldman, News Writer
Tip 06 Apr 2020
SASE identity policies enhance security and access control

Will the Secure Access Service Edge model be the next big thing in network security? Learn how SASE's expanded definition of identity is fundamental to this emerging access model. Continue Reading
By
- Dave Shackleford, Voodoo Security
Opinion 12 Mar 2020
The future of facial recognition after the Clearview AI data breach

The company that controversially scrapes data from social media sites for law enforcement clients announced a data breach. What does it mean for the future of facial recognition? Continue Reading
By
- Kjell Carlsson
Opinion 03 Mar 2020
Idaptive adds new remote employee onboarding option & passwordless authentication to Next-Gen Access

Seeing more and more vendors jump on the passwordless train makes my heart swell! Continue Reading
By
- Kyle Johnson, Technology Editor
Tip 25 Feb 2020
Tackle identity management in the cloud with AaaS or IDaaS

Has your organization considered outsourcing cloud identity management? Learn more about the benefits of AaaS, aka IDaaS, and what to consider before settling on a particular service. Continue Reading
By
- Ed Moyle, SecurityCurve
Feature 18 Feb 2020
Zero-trust model case study: One CISO's experience

Adopting a zero-trust environment was the right move for GitLab, according to the company's former security chief, but it may not be well suited for all enterprises. Continue Reading
By
- Mary K. Pratt
Opinion 10 Feb 2020
Idaptive is taking machine learning for authentication and applying it to authorization

We’ve seen AI/ML/analytics used for figuring out if a user is who they say they are. Now, how about if they’re doing what they should? Continue Reading
By
- Jack Madden
Feature 31 Jan 2020
Can IDaaS adoption improve enterprise security posture?

Experts suggest enterprises consider identity as a service as organizations' data management needs grow and access management becomes more complex. Continue Reading
By
- Mary K. Pratt
Opinion 27 Jan 2020
Where does 1Password Enterprise Password Manager fit in the EUC landscape?

Reduce the chance of a breach due to poor password habits with password vaulting. Continue Reading
By
- Kyle Johnson, Technology Editor
News 23 Jan 2020
AWS leak exposes passwords, private keys on GitHub

UpGuard discovered a public GitHub repository that contained sensitive AWS customer data, including passwords, authentication tokens and private encryption keys. Continue Reading
By
- Rob Wright, Senior News Director
Answer 21 Jan 2020
How effective are traditional authentication methods?

Are you up to date on the most popular digital authentication methods and their potential cybersecurity risks? Learn how the right technology can improve and secure access management. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Tip 02 Jan 2020
5 steps to a secure cloud control plane

A locked-down cloud control plane is integral to maintaining cloud security, especially in multi-cloud environments. Here are five steps to a secure cloud control plane. Continue Reading
By
- Dave Shackleford, Voodoo Security
Opinion 17 Dec 2019
Login.gov starts to fill the gap between social logins and enterprise identities

Access federal services with a service designed for governmental use but that uses common standards. Continue Reading
By
- Kyle Johnson, Technology Editor
News 13 Dec 2019
RSA teams up with Yubico for passwordless authentication

RSA Security joined forces with Yubico to eliminate passwords within the enterprise. RSA's Jim Ducharme explains what it will take to the reach the 'last mile' of the pursuit. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 20 Nov 2019
How to use and manage BitLocker encryption

Built into business versions of the Windows OS, Microsoft BitLocker encryption is an integral enterprise encryption tool. Read on to learn how BitLocker works and how to manage it. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
- Tony Bradley, Bradley Strategy Group
News 07 Nov 2019
SSL certificate abuse drives growing number of phishing attacks

Phishing attacks against the United Nations and humanitarian organizations show how threat actors are weaponizing valid SSL certificates and how hard it is to stop the abuse. Continue Reading
By
- Alexander Culafi, Senior News Writer
Opinion 29 Oct 2019
How to go passwordless if not all your apps support modern authentication standards

We want to eliminate passwords ASAP, unfortunately, some older apps can stand in the way of progress—thankfully, some identity providers devised solutions. Continue Reading
By
- Kyle Johnson, Technology Editor
Opinion 17 Oct 2019
Okta competing with Microsoft, Google, and others in passwordless offerings

While giants Microsoft and Google try leading the passwordless charge, Okta also plans to help organizations cut down on password use. Continue Reading
By
- Kyle Johnson, Technology Editor
Opinion 14 Oct 2019
Okta is making big investments in on-premises identity

Okta is also working to bring more context into access decisions. Continue Reading
By
- Jack Madden
Opinion 09 Oct 2019
How far is Google going in eliminating passwords?

We looked at Microsoft, let’s see how a couple other vendors are doing as well, starting with Google. Continue Reading
By
- Kyle Johnson, Technology Editor
News 03 Oct 2019
Ping Identity launches identity and access management tool

PingCentral aims to streamline the identity and access management processes and bridge the gap between IAM teams and application teams to improve productivity. Continue Reading
By
- Tanner Harding
Opinion 24 Sep 2019
When will we finally ditch passwords? Here’s Microsoft’s 4-step plan

Let’s be honest, passwords suck, and vendors are working to eliminate or reduce our reliance on them—what is Microsoft’s roadmap? Continue Reading
By
- Kyle Johnson, Technology Editor
News 17 Sep 2019
Researcher finds digital certificate fraud used to spread malware

A new certificate fraud scheme involves a threat actor impersonating company execs to purchase certs which are then resold to those looking to spread malware. Continue Reading
By
- Michael Heller, TechTarget
Opinion 17 Sep 2019
A look at ID proofing: bootstrapping a digital ID using a mobile device and physical ID

For the moment, it’s more for B2C than for employees, but it’s poised to keep spreading. Continue Reading
By
- Kyle Johnson, Technology Editor
Answer 16 Sep 2019
What's the purpose of CAPTCHA technology and how does it work?

Learn about the purpose of CAPTCHA challenges that enable websites to differentiate bots from authentic users to stop spammers from hijacking forums and blog comment sections. Continue Reading
By
- Joel Dubin
News 08 Aug 2019
'Dupe' there it is: SAML authentication bypass threatens Microsoft

Micro Focus security researchers demonstrated a new technique, dubbed 'dupe key confusion,' which allows threat actors to bypass Microsoft's SAML token validation. Continue Reading
By
- Rob Wright, Senior News Director
News 02 Aug 2019
CloudKnox Security adds privileged access features to platform

CloudKnox Security updated its Cloud Security Platform with features such as Privilege-on-Demand, Auto-Remediation for Machine Identities and Anomaly Detection. Continue Reading
By
- Ha Ta
Feature 01 Aug 2019
New tech steers identity and access management evolution

IAM is evolving to incorporate new technologies -- like cloud-based services and containerization -- promising more secure, granular management of access to company IT assets. Continue Reading
By
- Alissa Irei, Senior Site Editor
01 Aug 2019

New tech steers identity and access management evolution

Continue Reading
Opinion 01 Aug 2019
Is your identity management up to the task?

IAM is an organization's best defense for its weakest link, end users. Make sure you're following the right framework and keeping your tools honed and ready for battle. Continue Reading
By
- Ben Cole, Executive Editor
01 Aug 2019

Is your identity management up to the task?

Continue Reading
E-Zine 01 Aug 2019

Managing identity and access well unlocks strong security

Continue Reading
Tip 25 Jul 2019
How to limit the cloud security blast radius of credential attacks

Explore how the security blast radius concept, which has admins evaluating how to assess and limit the damage of a threat, can be applied to cloud identity and access management. Continue Reading
By
- Dave Shackleford, Voodoo Security
News 24 Jul 2019
Citrix breach blamed on poor password security

An investigation revealed the password spraying attack that gave malicious actors access to Citrix systems resulted in only some business documents being stolen. Continue Reading
By
- Michael Heller, TechTarget
Opinion 24 Jul 2019
What's the difference between a password and a PIN?

A question I've always had but was too afraid to ask when I first learned about passwordless experiences. Continue Reading
By
- Kyle Johnson, Technology Editor
Opinion 23 Jul 2019
A look at MobileIron’s zero sign-on and passwordless authentication plans

MobileIron’s “zero sign-on” tech uses phones to authenticate when accessing SaaS apps from unmanaged devices. Continue Reading
By
- Jack Madden
News 19 Jul 2019
Enzoic for Active Directory brings continuous password protection

Updates to Enzoic for Active Directory include NIST-compliant Continuous Password Protection, checking passwords against a live database of common or vulnerable passwords. Continue Reading
By
- Sabrina Polin, Managing Editor
News 19 Jul 2019
CyberArk brings updates to privileged access security offering

CyberArk introduces CyberArk Alero to its privileged access management product lineup, in addition to other endpoint management and cloud offering updates. Continue Reading
By
- Sabrina Polin, Managing Editor
Tip 17 Jul 2019
The benefits of IAM can far outweigh the costs

Identity and access management is a critical piece of enterprise information security. But the benefits of IAM go beyond illuminating who -- and what -- might be using your network. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
News 09 Jul 2019
OneLogin Desktop Pro for Windows reduces password load

By eliminating the need for remote workers to sign into Active Directory to access their network, OneLogin's Desktop Pro for Windows aims to make working remotely easier, according to the vendor. Continue Reading
By
- Sabrina Polin, Managing Editor
News 08 Jul 2019
Ipsidy's Identity Portal uses biometrics for secure access

Identity Portal by Ipsidy uses biometric authorization methods to ensure secure account access, enable users to verify changes, protect customers from fraudulent phone calls, and more. Continue Reading
By
- Sabrina Polin, Managing Editor
Tip 27 Jun 2019
Where does IMAP security fall short, and how can it be fixed?

Legacy email protocols like IMAP are prime targets for hackers. Fix IMAP security with better configuration, more encryption and multifactor authentication mandates. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
Feature 27 Jun 2019
Words to go: Identity and access management security

IT pros must keep up to date with rapidly changing identity technology and access threats. Help protect IAM security by getting familiar with this list of foundation terms. Continue Reading
By
- Katie Donegan, Social Media Manager
Tip 25 Jun 2019
What identity governance tools can do for your organization

Learn how to evaluate available security tools that manage the governance of your users' identity and access to company systems and data. Continue Reading
By
- Johna Till Johnson, Nemertes Research
Feature 21 Jun 2019
Biometric authentication terms to know

Consumers are on board with biometric authentication, but enterprises aren't so sure. Here's a breakdown of the must-know terms for companies considering biometric authentication. Continue Reading
By
- Madelyn Bacon, TechTarget
Opinion 20 Jun 2019
Despite recent vulnerabilities, you shouldn’t stop using hardware security keys like Yubikey

No solution is perfect, but these hardware security keys remain an awesome option in keeping accounts secure from attackers! Continue Reading
By
- Kyle Johnson, Technology Editor
News 18 Jun 2019
Netskope announces enterprise application security platform

Netskope for Private Access is a cloud-based platform that secures private enterprise applications on public clouds and in on-premises data centers using zero-trust access. Continue Reading
By
- Tanner Harding
News 17 Jun 2019
YubiKey FIPS recalled from government for reduced randomness

Yubico recalled YubiKey FIPS series devices after discovering an issue leading to reduced randomness in values generated by the keys, which are used by federal agencies. Continue Reading
By
- Michael Heller, TechTarget
Tip 07 Jun 2019
3 reasons privilege escalation in the cloud works

Statistics show that many cloud attacks are linked to credential and privilege misuse. Learn three ways threat actors are able to launch privilege escalation attacks in the cloud. Continue Reading
By
- Dave Shackleford, Voodoo Security
News 05 Jun 2019
Apple single sign-on option promises privacy for users

Apple is preparing its own single sign-on offering, called Sign In with Apple, which will focus on user privacy. But experts are split on how well this will work. Continue Reading
By
- Michael Heller, TechTarget
Answer 31 May 2019
Why are fewer companies using SMS 2FA for authentication?

Instead of SMS two-factor authentication, some companies are switching to 2FA through messaging apps and social media platforms. Learn what's behind this authentication trend. Continue Reading
By
- Tsahi Levent-Levi, BlogGeek.me