Identity-based security and the cloud

Table of Contents

  1. Summary
  2. Introduction
  3. Moving to centralized identity
  4. IAM components
  5. Emerging best practices
  6. Established vendors and new players
  7. Key takeaways
  8. About David Linthicum

1. Summary

The rise of cloud computing has led to the reassessment of how both cloud and non-cloud systems approach security. Considering the complex and distributed nature of cloud-based platforms, security approaches that leverage identity are the best fit. This will require a fundamental shift in thinking — and in technology.

There are many players in the field of identity and access management (IAM) ranging from the old guard of Oracle, CA, and IBM to newer players that are built specifically for the cloud. However, the movement to identity-based solutions is not as easy as the technology providers describe. While it’s fairly straightforward to build new approaches to security in new applications that reside on the cloud, the harder aspect of IAM is to extend this security model to the traditional enterprise, so the entire environment is secure. Security should be consistent and systemic, which is lacking in most traditional enterprise systems. This security problem needs to be solved before moving to the cloud.

In this report we’ll look at the concept of IAM, as related to the emerging use of cloud, and in the context of traditional enterprises that are adopting the cloud. We’ll consider changes that need to happen, best practices, new concepts (such as centralized trust), and solutions that IT buyers should consider right now.

Key findings from the report include:

  • As cloud adoption increases, identity-based approaches to security are the best fit. This means that many companies have to change their enterprise security approaches and technology to accommodate the use of the cloud. Shifting to IAM is the most logical step.
  • Enterprises that develop mature IAM capabilities can reduce their identity management costs, and, more importantly, become significantly more agile in supporting new business initiatives.
  • The use of IAM within cloud application deployment will back-fill into the enterprise as well, as companies modernize their security approaches and technologies to align with the use of public clouds.
  • The benefit of centralized identity management is the ability to quickly add identities for resources outside of the enteprise’s direct control while ensuring that they are both valid and have the proper credentials.
  • Different vendors approaches cloud security and IAM differently, so enterprise should review each product against specific requirements.

 

 

Thumbnail image courtesy: iStock/Thinkstock