Did you know the number one cause of companies being breached today is the compromise of identities? It’s true, and what’s more, identity compromise is first by a country mile: 81% of all breaches are based on identity theft or compromise (Verizon). With this in mind, it’s no wonder that every IT organization’s foundation revolves around an identity security solution. Let’s take a look at why some identity security solutions work better than others.
New Era for Identity Security Threats
For IT organizations everywhere, dealing with a new generation of security threats is critical. It used to be that the risk was purely external as threats amounted to outside port scanning and the vulnerability of unpatched systems. While external threats are still an issue, the bad guys have learned an unfortunately powerful trick—it’s easier to compromise a key identity when they have a free pass into the network. Major breaches like Target® and Sony® confirm that viewpoint.
Figuring out identity security has been quite the long and winding road. Before identity breaches were a common occurrence, Microsoft® Active Directory® (AD) was the core identity provider for most organizations, and the predominant on-prem directory service. Historically, AD has done an excellent job of managing Windows systems and application access, but continues to struggle with non-Windows® IT resources. That’s why IT organizations have leveraged solutions such as identity bridges, web application single sign-on platforms, privileged identity management, multi-factor authentication, and much more. With so many disparate solutions, it’s becoming even more challenging for IT organizations to create security around their identity management infrastructure.
As end users continue leveraging more online resources for their personal activities than ever before, you can start to see why there are significant problems emerging around identity security. End users have been known to reuse the same login credentials across both personal and work resources, and with so many passwords to remember, it’s understandable that they might start to get a bit lazy with their password strength. This is one argument for adopting a zero trust network architecture.
A Core (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Zach DeMeyer. Read the original post at: https://jumpcloud.com/blog/identity-security-solution/