As high profile security breaches continue to proliferate it has become increasingly clear that how we manage our online identities is seriously out dated in the ever-evolving digital world.
We caught up with Darren Gross, EMEA Director of Unified Identity Services company, Centrify to find out more about why identity management is now a priority among enterprises and what can be done to rethink how we secure corporate data.
TechRadar Pro: What are the key business challenges driving the identity-as-a-service (IDaaS) marketplace?
Darren Gross: The advent of cloud and mobility has radically overhauled how businesses deliver IT to users and how in turn users access and consume those services. Company data has broken outside of the corporate HQ and is walking around in any one of your employees' back pockets.
Securing that data, without making access to it onerous for employees, is a business imperative. Traditionally businesses have relied on passwords, but you only need to look at the headlines over the last few months to realise that this is a big Achilles heel for corporate security policies.
The situation is exacerbated by the fact that even 94% of security professionals we surveyed at InfoSecurity this year admitted to using the same device to access both corporate and personal apps.
This is a concern because given the challenges associated with remembering numerous passwords we tend to use the same one in all aspects of life - professional and personal. For hackers this is a dream come true as it provides a backdoor to the corporate infrastructure.
One password and they are free to roam wherever they like, forage through your bank details or steal confidential customer information from the company database stored on your smartphone.
Against this back drop the global identity and access management market is forecast to grow from $4.4 billion in 2012 to $6.99 billion in 2017 according to IDC.
Such is the demand for this technology that Centrify has quickly grown its business, doubling its headcount in the UK and growing its channel partners by 139% in the last six months alone. Identity is the next big milestone in cloud adoption.
TRP: Why is identity so often overlooked when it comes to the cloud and mobility?
DG: If you think about it, every module and function of a service has morphed to become a different app. Every day it gets worse as more devices are brought into the workplace and more apps are deployed and downloaded. This creates silos that in themselves become new infrastructures that need to be managed.
The complexity is simply staggering and because companies aren't effectively managing identity they have no idea who has access to what data and via what device. If they don't know this, when an employee leaves, how can they possibly tell if their IT footprint has been wiped and that no back doors exist?
TRP: How much of a challenge is it for IT to manage an employee's digital footprint across the organisation?
DG: It's become a huge challenge to manage an employee's digital footprint. If you are not managing identity, you don't know who has access to what data, if they should have access to that data, and also where they are accessing it from. In the digital world, our identity is our currency - it validates and authenticates us to go where we need to go and access the information needed to do our job.
But the more apps and data that get added, and the more passwords created, the harder it becomes to unravel.
TRP: What role are passwords playing in making security complex?
DG: The problem with passwords, apart from their inherent insecurity, is that organisations expect employees to remember multiple different ones. Our research found that over a quarter of companies (27%) expect their employees to remember six or more passwords.
That is a lot of passwords - or password sprawl as we call it. Not only is IT going to be inundated with calls from users who can't remember their password and need it resetting, but how on Earth do you stay on top of which user is using what password?
IT environments are already becoming increasingly complex and passwords are simply adding to this, without adding any value or protection to the business.
TRP: Do you believe that passwords in their current form will still exist in 10 years' time?
DG: What recent breaches have taught us is that passwords in their current form are inherently insecure. We desperately need a new approach, but equally we need to ensure that we don't make things overly complex for employees. They need - and demand - seamless access to company data in order to be productive.
With this in mind, Security Assertion Markup Language (SAML) is starting to gain some real momentum. It allows you to log onto a website without a password, instead of using a system that knows who you are and generates a one-off message or token, in order to validate your identity and send this to the server. Known as 'zero sign on' it provides instant access to the service and delivers a seamless user experience.
TRP: What are the key benefits that a company can realise from better managing identity?
DG: Centrify's aim is to make consuming IT services as easy and secure as possible regardless of whether you are on the train on your smartphone or at home catching up on emails on your laptop.
Users jump from device to device without a second thought and this working culture is something that identity management has to enable. By doing this, companies can benefit from greater end user productivity, improved IT efficiency, better risk mitigation and regulatory compliance, as well as a lower total cost of ownership (TCO) of their identity infrastructure.
TRP: What are your key technology partnerships within the IT industry?
DG: Centrify has a number of key partnerships that we're proud of. We've teamed up with Samsung to improve security and increase productivity for millions of enterprise employees who use Samsung mobile devices.
The Samsung KNOX solution is co-developed with Centrify and leverages its technology and cloud services.
We've also been a long-time partner with Microsoft, offering in-depth knowledge around Active Directory and Office 365. We also provide industry partner integrations and platform support.
Additions in the past year include Zoom, Alfresco, Marketo, Huddle, Dropbox for Business, Red Hat Storage, and NetSuite; and Day One support for the Apple iOS 7 operating system for iPhones and iPads, and the Apple OS X 10.9 Mavericks operating system for Mac.
TRP: Lastly, what is your vision for the future?
DG: At the heart of Centrify's vision for the future is simplicity. We want to make it possible for end users to have access to their information any time, any place and from any device, while at the same time enabling IT to have tighter security and proper oversight and controls in place to ensure that the corporation and its data are being protected.
To deliver on this we will continue to innovate and create new technologies that differentiate us from any of our competitors across the data centre, cloud and mobile.