Identity and access management is a security framework that ensures right people have the right access to available resources. To authenticate oneself, usually one would use a username with a password. In modern world, we use multi factor authentication with requires users to enter more than just that, like a code that comes to your phone or a answer to a specific question. It can be something you know like one time password or answers to security questions or something you possess like a phone that can get messages or USB/smart cards, and it can also be something you are like your fingerprint or iris. Sometimes passwordless authentication is utilized, which is a authentication method that doesn’t require something you know like a password.
In the modern world, single sign on is heavily utilized, which is a user authentication service that creates a session upon authentication and use that session for different individual platforms. You will be able to access multiple systems that uses this scheme without authenticating multiple times and brings numerous benefits like simpler administration, better network security, and reduced IT costs. We also have federation which does the same thing. The key difference between the two is single sign on authenticates single credential across various systems within one organization while federation offer single access to a number of applications across various enterprises.
For specific users with admin level privileges, privileged access management is used. Any accounts with elevated capabilities like root users require extra care due to extra risk they post, so privileged access management is used for heightened security to prevent credential theft. Privileged access management tool simply monitors, detects, and prevents unauthorized privileged access to certain resources.
A cloud access security broker (CASB) is policy enforcement point that can be used to secure data, govern usage, and protect data and prevent threats. CASB is utilized when you leverage cloud in any shape or form. CASB is simply a cloud hosted software or on premises software that allows organizations to extend the reach of their security policies to cloud as well.
HansITAcademy 