Retail industry requirements:

Compliance on scale: The proliferation of technology out to the store network means that retailers must manage employee access rights at an incredible volume.  In addition, the reality of annual turnover rates approaching 75 percent or more translates into an IAM nightmare for many retailers. ELM for Retail delivers a simplified attestation process that certifies access on a massive scale with minimal effort and complexity, even for retailers juggling thousands of employees over hundreds of locations.
Real-time on-boarding and offboarding: “On-demand” onboarding enables new employees to be onboarded and receive appropriate system accounts and access within minutes of being hired, with offboarding just as easy. This helps solve the IAM challenges and complexity presented by same-day onboarding and immediate offboarding native to the high-turnover retail workforce.
Easy access rights provisioning: ELM for Retail’s rule engine and federated IAM environment easily enables task-based identity management at the store level for employees who are temporary, working in multiple locations or transferring to a different store.
Integration with retail-specific solutions: ELM for Retail provides “out of the box” integration with everyday retail and corporate technologies, including POS, HRMS, ATS and ITSM tools. This drastically reduces the costs associated with customizing generic IAM solutions.

ELM for Retail delivers measurable business benefits to retailers. Capabilities such as certification of access, segregation of duties (SoD) enforcement and consistent compliance controls across enterprise systems significantly improve the security posture of N8 Identity’s retail clients. In addition, ELM for Retail comes prepackaged with full interoperability with many of the retail industry’s most-used applications, including POS, inventory management and ERP (including SAP), timekeeping, Portal, LMS and others, accelerating time to value by decreasing the need for customization.

Source http://www.sacbee.com/

SyferLock’s GridGuard™ software-based solutions deliver enhanced single-factor, two-factor and multi-factor authentication utilizing patented software-based grids to convert static passwords/PINs into secure one-time passwords or PINs (“OTPs”). SyferLock’s GridGuard™ authentication solution provides device-less OTPs, offering a simple, more secure way to access information while leveraging existing passwords and password infrastructure.

“We are pleased that SyferLock’s software-based authentication solutions have proven interoperable with Ping Identity’s proven and secure identity bridge software,” stated Chris Cardell, CEO of SyferLock. “SyferLock’s token-less one-time password solutions now provide users of PingFederate with an innovative, cost-effective alternative for strong authentication. SyferLock’s user friendly authentication solutions are easy to deploy with Ping Identity software,” added Cardell.

“Ping Identity is committed to ensuring our standards-based software can easily integrate with a full range of secure, cost-effective authentication options,”said Mike Desai, senior director of Worldwide Business Development for Ping Identity. “Adding SyferLock to the Ping Identity Technology Alliance Program provides another choice for strong authentication that is ready to integrate with our identity bridge software.”

SyferLock’s flexible, adaptable solutions enable enterprises to cost-effectively address multi-factor authentication across a range of use cases and with a range of platforms. SyferLock is market validated with a growing customer list and a number of awards from independent research firms and industry publications. Increasingly, enterprises are turning to SyferLock and its superior software-based authentication solutions to eliminate hardware tokens and to reduce Total Cost of Ownership (TCO).

About Ping Identity | The Identity Security Company
Ping Identity believes secure professional and personal identities underlie human progress in a connected world. Our identity and access management platform gives enterprise customers and employees one-click access to any application from any device. Over 900 companies, including 45 of the Fortune 100, rely on our award-winning products to make the digital world a better experience for hundreds of millions of people. Visit pingidentity.com for more information.

About SyferLock Technology Corporation
SyferLock is an innovative provider of next-generation authentication and security solutions. SyferLock’s patented software-based authentication and security solutions enable enterprises and government organizations to cost-effectively address strong authentication/2 factor authentication to secure every access point, including computers, networks, online access and mobile devices, across a range of applications including proprietary networks, cloud computing and mobile. SyferLock’s user friendly solutions deliver enhanced single-factor, two-factor and multi-factor authentication through token-less one-time passwords or PINs without the need for any additional hardware, tokens or client-side software, providing superior security along with greatly reduced TCO. SyferLock’s flexible methodology is easy to deploy, is extremely lightweight and is available in a High-Availability (HA) cluster. For more information, visit http://www.syferLock.com.

SyferLock Technology Corporation, SyferLock Cloud Authentication Service™, GridGuard™, GridSoftToken™, GridPro™, GridWare™, GridPass™, GridPIN™, GridPic™ and MyGrid™ are trademarks of SyferLock Technology Corporation. SyferLock Technology Corporation System and Method are covered by U.S. Patent nos. 7,143,440 & 7,725,712, with additional Foreign Patents and Patents Pending. All third party trademarks, trade names or service marks are the property of their respective owners.

Source : http://www.digitaljournal.com/

While other solutions simply classify data, Dell’s Quest One Identity Manager – Data Governance Edition Classification Module discovers and classifies all new and old unstructured data, and goes beyond the data to show who has access and how it was obtained, to improve regulatory compliance and business agility.

As unstructured data continues to grow at record rates, related risks within the organization also are increasing. The need to identify and secure this data, likewise, is growing in volume and complexity. A new enterprise survey conducted by Dell Software shows that:

52 percent of respondents have experienced at least 25 percent year-over-year growth in unstructured data across their organizations
63 percent stated that less than 25 percent of their organization’s data is currently classified as confidential and protected with additional security policies
45 percent are not confident in the security of their organization’s classified unstructured data

The survey results show that data in many organizations is growing, yet remains unprotected, presenting a significant security risk. To limit an organization’s exposure and risk, all data – both structured and unstructured – must be protected, and that protection starts with user access.

Quest One Identity Manager and the Data Governance Edition solution set provide context around users, showing what they have access to in terms of entitlements to applications, roles within the company, and even geographical location. The integrated Classification Module adds the ability to discover and classify unstructured data contained in files and add context to that data.

Quest One Identity Manager – Data Governance Edition Classification Module also boosts compliance, helping the organization ensure that only the right person has access to the data. In the event of a security breach, or following an audit, the most accurate forensic information can quickly be obtained, showing exactly what the user had access to, whether any of that data was classified, who approved the access, and the last time access entitlement was reviewed.

Continue reading here on CNBC

Trying to remember numerous passwords can be onerous on the end user at the best of times and can lead to a plethora of password sins committed by the end user. Whilst we can deploy some SSO technologies to relieve password fatigue, the on-boarding provisioning process often means that the user needs to know their passwords at some point – or do they?

I recently worked on a project at a leading engineering company who were in the process of deploying a large new ERP system. The end users were highly skilled engineers focusing on cutting edge technology but password security was not high on their list of priorities. Traditionally within the organisation, credentials for new applications were sent by email and sometimes they were communicated over the phone. Inevitably these were written down in text files and diaries or passwords were changed to be the same “pet’s name” type password for multiple applications.

This was a huge concern for the Chief Architect who wanted to remove end user password management and provide “zero touch” credential provisioning for the new ERP applications. He also wanted to satisfy auditing and compliance requirements by enforcing complex passwords whilst preventing unauthorised credential sharing. All this needed to be achieved without inconveniencing the users.

Continue reading here…

In its new evolution as a service platform, ERPM now provides full automation and programmatic orchestration of privileged credentials, certificates, pin codes, passcodes and other sensitive data generated on a massive scale by large multi-tenant organizations. With ERPM, the discovery, auditing and access control of credentials and certificates in the world’s largest enterprises and service providers can now be managed entirely by machines, rather than through direct human interaction.

“Our philosophy has always been that automation is the only way to take control over the powerful privileged identities widespread throughout modern IT environments,” said Philip Lieberman, President and CEO of Lieberman Software. “Only by deploying automated security solutions can organizations locate and remediate weaknesses faster than nation-state attackers and other criminal hackers can exploit them.

“The challenge is in managing and securing these identities at massive scale. When gas meters, water meters, cable boxes, desktop boxes, cell phones, routers and more are all taken into account, the number of systems that need to be managed can extend into the millions. A truly secure environment requires all identities on all devices to be discovered and managed. To that end, we’ve developed ERPM as a solution that can automatically manage the entire privileged identity and certificate management lifecycle — from the auto-discovery of each privileged account to the propagation of password changes throughout the enterprise — without manual involvement.”

To accomplish this, ERPM’s newest version offers two interfaces — with Windows PowerShell® and SOAP web services — that provide a programmatic option for identity management.

Source Sys-Con

Click here to look on this video about IAM Unix system discussion.

Fortunately, I’m not a Jeremiah. This Biblical prophet (he’s credited with writing the Book of Jeremiah, 1 Kings, 2 Kings and the Book of Lamentations) was attacked by his own brothers, beaten and put into the stocks by a priest and false prophet, imprisoned by the king, threatened with death, and thrown into a cistern by Judah’s officials. These people didn’t like what he had to say! No one would speak up in Jeremiah’s defense, but a number of people, publications and organizations have taken up the cry to banish passwords as the sole method of authentication for user accounts.

Continue reading on Kuppingercole Blog