HID Global has added a cloud-based credential management service to its portfolio of cloud-based identity solutions.
The new service is said to simplify the issuance and management of trusted public key infrastructure (PKI) certificate-based credentials. The PKI credentials can be used by a broader range of organizations for multifactor authentication and converged physical access to facilities, as well as digital signing and encryption of emails and documents.
HID Credential Management Service includes everything needed to issue and manage the lifecycle of digital identity and high-assurance credentials using a Cloud delivery model, according to an announcement. According to HID, it removes PKI complexity and enables a wider set of authentication use cases than nearly any alternative in the identity and access management (IAM) market.
Most operating systems and browsers automatically recognize these certificates, ensuring the digital identity issued by the HID Credential Management Service can be used as a foundation for achieving zero trust security, the announcement states. Endpoint authenticator options include smart cards and USB tokens, mobile app authenticators and converged badges for accessing facilities and IT systems.
“An exponentially growing threat surface is placing many of an organization’s global users — employees and non-traditional users — directly in the crosshairs of a potential attack,” said Brad Jarvis, vice president & managing director of Identity & Access Management Solutions (IAMS) with HID Global.
Jarvis said regulatory compliance is also driving greater need for high-assurance credentials, although certificate-based multifactor authentication solutions have been difficult for smaller organizations to implement, or not flexible and comprehensive enough for larger ones with broader, more holistic needs.
“Our cloud service speeds and simplifies deployment with the broadest possible options for local and state governments, financial institutions and enterprises,” he said.
Features of HID Credential Management Service include:
* End-to-end solution for both on-premise and cloud protection: Spans all requirements for deploying and managing trusted PKI, and for using certificate-based credentials for authenticating users to Windows and Active Directory as well as cloud applications.
* Broad authenticator options: Mix-and-match choices include smart cards and USB keys featuring embedded secure elements, mobile app authenticators stored on a smartphone, FIPS 140-certified smart cards, and smart cards for converged physical and IT access.
* Flexibility: Integration with open standard protocols ensures the service will support evolving security needs and complex, hybrid heterogeneous systems across many locations, functions and architectures. Subscription licenses are easily added to support up to one million users.
* Straightforward integration and deployment: Works directly with an organization’s Active Directory Federation Services (ADFS) and uses a hosted multi-tenant infrastructure for fast deployment and simplified user on-boarding without expensive up-front investments.
#securityelectronicsandnetworks.com