Policy-Based Access Control – Consistent Across the Enterprise
- LANGUAGE: English DATE: Wednesday, October 14, 2020 TIME: 4:00pm CEST, 10:00am EDT, 7:00am PDT
The evolution of cybersecurity protection demands a more nuanced response to providing access to a company’s sensitive resources. Policy-based access control (PBAC) combines identity attributes and context variables to enable sophisticated granting of access to corporate systems and protected resources based on centrally managed policies that ensure consistent access control decisions across the enterprise. Advancement in both business requirements and technology (such as growing use of micro-services), require a better way to control access. In a way that is consistent across all silos, dynamic enough to react to change in risk, and provides better control for the application business owners.
PBAC facilitates the application of consistent policy across all applications that use the PBAC authorization service. Furthermore, policies are evaluated in real-time against current attributes rather than having to wait for a nightly update of identity attributes before access control policy is correctly applied. PBAC also facilitates a risk management approach to access decisions. If access outside business hours represents a greater risk the authorization service could prompt for an additional authentication factor before access is granted.
Join this webinar and learn more about
- Drivers for the deployment of dynamic authorization technology
- The desire for common policy deployment across an enterprise
- The need to accommodate diverse access control requirements within an organization
- The requirement for real-time access control decisions
KuppingerCole Senior Analyst Graham Williamson will explain the key findings and insights of the recent Market Compass report on dynamic authorization management.
He will be joined by Gal Helemski, Co-founder and Chief Innovation & Product at PlainID, who will discuss the deployment of PBAC and address how the granting of access entitlements can be managed in real-time using a consistent, business-driven approach.
Market Compass: Dynamic Authorization Management
The KuppingerCole Market Compass provides an overview of the product or service offerings in a selected market segment. This Market Compass covers the Dynamic Authorization Management market and provides a comparison of the main product offerings. Dynamic Authorization externalizes access control decisions to a centrally-managed authorization service that evaluates access policies in real-time to permit or deny a user’s access request to resources.
PlainID, the Authorization Company, simplifies the complexity businesses face when securely connecting identities to digital assets. Powered by PBAC, PlainID provides a SaaS-based, centralized policy management platform with decentralized enforcement to manage who can access what across the enterprise technology stack; including applications, data, API, microservices and more.
In the face of increasing cyber-attacks by cybercriminals and nation-states, most organizations are investing in filling in the gaps in their cyber defenses, but as the landmark SolarWinds supply chain breach showed, securing Microsoft Active Directory (AD) is vital, but often overlooked.