Blog by Martin Kuppinger

Blog
Adding Bread to the Sandwich: Beyond MITRE D3FEND
by Martin Kuppinger
Commissioned by HCL Software Over the past years, various frameworks and models for defending against cyber-attacks have been published. A popular one is the NIST CSF (Cybersecurity Framework), another one is MITRE D3FEND TM . Both have overlaps and differ in other areas. But, when looking at these approaches, there also are missing elements that are required for a comprehensive approach. Comparing NIST CSF and MITRE D3FEND TM While NIST consists of the five stages Identify – Protect – Detect – Respond – Recover, the MITRE approach has Harden...
Read More
Blog
The Future of Authentication - Passwordless
by Martin Kuppinger
Single factor authentication like passwords is considered bad practice. Passwordless authentication, done right, is not only more secure but also more convenient. Learn more about the increasing demand, regulations as well as use cases. Martin Kuppinger enjoyed a delightful conversation with Felix Magedanz from Hanko at EIC 2021 about the future of authentication. Tune in to learn more about the future of multifactor authentication.
Read More
Blog
How to Grant Access Right
by Martin Kuppinger
Find out about the importance of context for Identity Risk Management.  Watch the insightful interview Martin Kuppinger had with David Pignolet from SecZetta on the EIC 2021.
Read More
Blog
Rest in Peace, Kim Cameron
by Joerg Resch , Martin Kuppinger
Digital identity thought leader Kim Cameron´s passion for fundamentally influencing the way we think about, and deal with privacy and digital identity, has brought us where we are today and will endure forever. On 30 th November, 2021, Kim passed away after his courageous battle with cancer. We will continue to honor him by living by his ideals that he expressed back in 2005 with his 7 Laws of identity . User Control and Consent, Minimal Disclosure for a Constrained Use, Justifiable Parties, Directed Identity, Pluralism of Technologies, Human Integration, Consistent...
Read More
Blog
Managing Access and Entitlements in Multi-Cloud Multi-Hybrid IT
by Martin Kuppinger
Introducing DREAM (Dynamic Resource Entitlement and Access Management) Paradigm for managing all access of everyone and everything to all resources consistently in a multi-cloud multi-hybrid environment. Policy-based, automated, consuming the current state of services & infrastructure. Shifting from identity & security siloes to a holistic, integrated concept. Start tactically now with CIEM, PAM, etc., but go on to strategic measures. Managing identities, managing entitlements, and managing access has become way more complex than ever before, in dynamic, multi-cloud,...
Read More
Blog
Making DevSecOps a Reality and Going Beyond – Introducing SODAS (Secure Operations & Development of Agile Services)
by Martin Kuppinger
A paradigm for aligning Development, Delivery, Infrastructure Setup & Management, and Operations in a seamless manner, with identity & security always at the forefront. Policy-based, automated, and with well-segregated but aligned responsibilities. DevOps, an integrated approach for development and operations of software and services, and DevSecOps, adding a security angle, have been around for close to a decade. While DevOps became an established principle, combining agile software development and the subsequent operations, DevSecOps – despite being intensively...
Read More
Blog
IT for the Digital Age: Introducing BASIS – Business-Driven Agile Secure IT as a Service
by Martin Kuppinger
A paradigm for unified delivery of IT services to the business demand, based on automated, policy-based management, and supported by the unification of heterogeneous multi-cloud multi-hybrid IT environments following a services-based approach. Businesses need to reinvent themselves continually in the Digital Age. Every business is a Digital Business today, that needs to deliver and improve Digital Services that differentiate it from the competition. This requires an IT that is built to deliver to the business demand in an agile, yet secure and well-controlled manner. This will work...
Read More
Blog
CIO Advice: How to Make Your Digital Business Fly
by Martin Kuppinger
Doing IT right is the premise for delivering time-to-value in the Digital Journey. Success requires an agile IT for delivering secure Digital Services on time. Virtually all organizations have become digital at least to a certain extent in the past three decades since the World Wide Web (already an old-fashioned term) took off. But we are still on that journey. There is a good reason not to name this Digital Transformation, but Digital Journey. It is not about transforming from the analog to the digital state, but an ongoing journey. This journey is driven by ever-changing business...
Read More
Blog
Microsoft further strengthens Identity and Security offerings by CloudKnox Security acquisition
by Martin Kuppinger
Microsoft last week announced another acquisition, a few days after announcing the acquisition of RiskIQ . This next acquisition is CloudKnox Security , a vendor offering unified privileged access and cloud entitlement management. These technologies, sometimes also referred to as CIEM (Cloud Infrastructure Entitlement Management), are essential for getting a grip on entitlements and access to cloud resources in multi-cloud and multi-hybrid environments. Permission Management for hybrid cloud infrastructures The CloudKnox Cloud Permissions Management Platform delivers a range of...
Read More
Blog
Where Workflows, Service Management, Digital Identities, and Work From Home Meet
by Martin Kuppinger
Simplifying access to IT services by building on platforms for IT workflows and beyond ServiceNow, over the past few years, has emerged as one of the leaders in the ITSM (IT Service Management) market and beyond to what today is named ESM (Enterprise Service Management). In fact, the evolution of that market has helped ITSM leave the bunker of IT, and become a strategic element for businesses. ESM today is much bigger and more important than ITSM ever was The reason is that ESM supports organizations in business process optimization, based on central platforms with centralized...
Read More
Previous 1 2 3 4 5 6 7 Next