Identity and access control Archives

Nothing Cloudy About The Identity Access Management (IAM) future!

March 28, 2016March 30, 2016Shantha Kumari

The future of the Cloud Identity Management (IAM) is shiny & bright, with both SMBs and enterprise businesses pouring in money to protect their data and digital assets.

A new report by Allied Market Research projects that the global cloud IAM market would garner revenue of $2.8 billion by 2020, registering a CAGR of 26.2% during the forecast period 2015 – 2020.

Join in this Cloud evolution with Sysfore and secure your business!

Varied technological environments, increasing cyber-attacks, strict regulatory compliances, and increasing digital identities across organizations, are propelling the need of IAM services for information security. With this high stake involved, it’s natural for businesses to look towards the cloud to manage their digital identities, both inside and outside an enterprise.

Traditional concepts for Identity and Access Management that have been focused on the internal IT are no longer sufficient. We still need some of these, but they cover only a fraction of the future scope – and for some organizations already today’s scope – of Identity and Access Management.

The following measures for future Identity and Access Management might help organizations shape their own strategy and roadmap for Identity and Access Management.

#1: More than humans – It’s about Identities of things, devices, services, and apps

In this connected world, everything has an identity – whether it is something like a smart meter, one of the various connected elements in connected vehicles, or wearable tech. All of them require access to be managed through apps, services, devices, etc.

The numerous identities has changed the way in which they are accessed and interfaced with other humans, things, devices, services and apps. It requires authentication and management of relationships between identities.

#2: Multiple Identity Providers – Varied options

There is no central directory anymore, neither for humans nor for all the other things and services. It’s impossible to manage millions of customers spread across the world. Plus, the customers want to re-use identities across apps, services and companies encouraging the BYOI (Bring Your Own Identity) concept.

#3: Multiple Attribute Providers – Information on identities

The Identity and Access Management, will now be the source of information for Cloud, Mobile, and Social Computing, OT (Operational Technology) security, APIs (through which the apps, services and systems interact with each other through and which need to be protected) and the apps, and the Internet of Things. There will be many sources of trust for various attributes.

#4: Multiple Identities – Many users with different identities and flexibly to switch

A single user may have multiple identities within a same organization. He could be an employee, a freelance contractor, and a customer of the same corporation all at the same time. Organizations have to understand that it is still the same person, when he switches from one account to another.

#5: Multiple Authenticators – There is no single authenticator that works for all

There are so many different types of identities and related elements, that it’s not feasible for a single method of authentication which will guarantee security of your identity. There is no single approach that we can rely on. IAM will have to support different authentication mechanisms such as Risk Based Authentication, biometrics, single sign on etc, while understanding the risk and making risk-aware access decisions.

#6: Context – Identity and Access Risk varies in context

A key concept of Future Identity and Access Management is context. Which device is someone using? Which type of authentication? Where is the device used? There are many elements that make up the context. Depending on that context, risk varies. Identity and Access Management has to become risk-based and, with the ever-changing context, dynamic. While today’s static access controls implicitly reflect a risk understanding in a static context, future access controls and decisions must become dynamic to adapt to the current context.

Keeping these fundamental measures in mind, Sysfore can help you build a secure, and protected cloud environment for your business. You contact us at info@sysfore.com or call us at +91-80-4110-5555 to know more.

Managing Cloud Identities in Hybrid Cloud

March 25, 2016Shantha Kumari

As companies add more cloud services to their IT environments, the process of managing identities is getting more complex . When companies use cloud services — services they don’t control themselves — they still must develop sound policies around role-based access. They still must grant rights to users who need information to get work done, and they must be able to automatically take away those privileges when people leave a company or change roles. On top of it all, companies using cloud services are also bound by any compliance rules that govern their identity and access management (IAM) initiatives.

Businesses now have to deal with a collection of cloud services, that hold sensitive data obtained from new logins and proprietary connector APIs that often don’t work well with internal IAM systems.

Understanding Azure SQL Database

December 21, 2015Shantha Kumari

Managing the immense data that a company collects over the years, requires tremendous effort, time and money. Cloud services is the answer for doing this correctly and with improved efficiency. Microsoft Azure SQL Database also known as SQL Azure, Windows Azure SQL Database, is a cloud-based service from Microsoft.

What is Azure SQL Database?

Azure SQL Database is a cloud based relational database service, and is based on the Microsoft SQL Server engine. It allows you the freedom to run your business without worrying about managing the infrastructure, security, network connectivity and virtual machines. You can concentrate on building your application and getting it out on the market on time.

SQL Database delivers predictable performance which you can measure, quantify and analyze. The high availability of data, is backed by data protection and security to ensure business continuity in the event of any planned or unplanned downtime or failovers. Scalable to thousands of databases, this cloud service ensures your data is synchronized, accurate and available.

How does a SQL Database work?

A typical database includes various information or data in either structured or semi-structured, or even unstructured format. It offers data storage capabilities which allows users to make relational queries against stored data, search, and even allows data analysis and data synchronization.

SQL Database is a subset of the SQL Server engine, meaning it supports existing SQL Server tools, libraries and APIs, which makes it easier for you to move and extend to the cloud.

SQL Azure supports SQL Server’s Transact-SQL (T-SQL) query language. It offers built-in support for high availability, fault tolerance and allows for data to be synchronized between your on-premises SQL Server and the cloud databases.

Basic Consideration when opting for Azure SQL Database

Here are some pointers which will you need to consider when moving your database to the Azure Cloud.

Service Tiers and Performance levels

Azure SQL offers three service tiers – Basic, Standard and Premium – which comes with varying degrees of performance and cost. Each service tier has a set database limit and performance level.

Depending on your database size, you can select the service tiers and the performance depends on it. Whenever the database limit is reached, update or insertion of data is not allowed. But delete, select, truncate or drop queries are supported.

Security

Securing the database of an application requires limiting access, protecting and monitoring tasks. Azure SQL offers connection security, authorization, authentication, and encryption of the data while it is in transit to and from the database. It also ensures auditing and compliance of the database with the various security requirements.

Data Transaction Units

DTUs is the measure of the number of database transactions that are carried out per second. A Basic tire has 5 DTUs while the Premium service tier has 1750 DTUs.

Business Continuity and SLA

Azure’s 99.99% Service Level Agreement (SLA) ensures that your app is available 24/7. This high availability is due to the geo-replication of data in different data centers. There is business continuity for easy recovery in the case of unplanned or planned events of a disaster.

For information on how you can explore Azure SQL Database for your business, please write to us on info@sysfore.com or call us at +91-80-4110-5555