Identity & Access Network Security Priority Post Security Bloggers Network

Authentication, Authorization, Accounting and Identity Management

by John Busso on April 3, 2018

The AAA framework is the logic behind Identity Management systems. AAA stands for Authentication, Authorization, and Accounting that this blog will explain. Authentication “Authentication is the act of confirming the truth of an attribute of a single piece of data claimed true by an entity. In contrast with identification, which refers to the act of… The post Authentication, Authorization, Accounting and Identity Management appeared first on CCSI.
Read more

Analytics & Intelligence Identity & Access Security Bloggers Network

Bot Protection During Signup and Signin

by Simon Moffatt on September 22, 2017

Bots, bots bots. They're everywhere apparently. They are becoming more complex and cause havoc to customer facing identity management systems, IoT devices and more. Fake accounts. Dummy accounts. Redundant accounts. Orphan accounts. Fraudulent accounts. Not to mention DDoS (Distributed Denial of Service) attacks. Mine field.Well, there are certainly some basic steps that can be taken to help identify and prevent bot usage of the key identity management services many public facing API's and applications expose. Firstly, let's describe some of the main functional areas bots are likely to attack.The Identity Attack VectorAny public facing service or...
Read more

Identity & Access Security Bloggers Network

Campaign Lessons Learned—Part 3: Authenticity, Authority and Access

by C. Warren Axelrod on May 1, 2017

From the cybersecurity professionals’ point of view, identity and access management (IAM) is really all a matter of authenticity, authorization and access permissions. Similarly, if the origin of a news item or blog or comment can be traced to a provably authoritative source, then it is more likely to be taken to be true than
Read more