The Evolution of IAM in the CloudMoshe Ferber of Cloud Security Alliance Describes Authentication Strategies
More organizations are deploying single sign-on mechanisms when they move to software-as-a-service applications to help enhance authentication and control access, says Moshe Ferber, chairman of the Israeli chapter of the Cloud Security Alliance.
"Many organizations today are switching from local on premises applications to cloud-based applications, such as Microsoft Office 365, Google GSuite, Sales Force, Service Now - all of those are software-as-a-service, Ferber says in an interview with Information Security Media Group. "When you move to software as a service, you need to either sync your user database or use some kind of SSO mechanism."
Handling identity and access management in a multicloud environment, however, is a significant challenge, Ferber acknowledges. Conditional access can play an important role, he adds.
In this interview (see audio link below photo), Ferber offers insights on:
- Innovation in cloud IAM;
- The use of granular access controls;
- How approaches to authentication evolve as organizations use more cloud services.
As the chairman of the Cloud Security Alliance's Israeli chapter, Ferber works with start-ups in solving cloud security challenges. He's also a contributor to various security certifications, research efforts and security community initiatives. He is the founder of Onlinecloudsec.com, an official provider of training services for CSA and (ISC)2.