Recently, Access Management has focused mainly on web authentication, single sign-on (SSO), and access to intranet/extranet applications. However, enterprise access management has evolved rapidly in recent years to meet the requirements of new computing paradigms such as the cloud, some of which are Sofware-as-a-Service (SaaS) services, mobile access (especially BYOD, or “Bring Your Own Device”), social interactions using social networks, and the Internet of Things (IoT).
In addition, economic and market forces have forced companies to look for ways to reduce costs, connect with new partners using new standards (e.g. OAuth), new architectures (e.g. REST), new application programming interfaces (public APIs), and consolidate data centres and licences through private or public Access Management services. At the same time, changes in health and privacy laws and regulatory requirements have forced companies to rethink their views on secure data protection.
In such a challenging environment, companies need to develop a comprehensive and proactive strategy based on risk management principles. Companies that take only a reactive approach to security, choosing only identity-based or target products to protect web apps, mobile apps, cloud, APIs or web services, can be in danger.
This reactive approach, and the fact that information is not shared between company departments, results in a weak security infrastructure with high maintenance costs, and due to inconsistent security policies, external and internal vulnerabilities, compliance problems may occur.
Choosing the right solution goes beyond ensuring that the essential requirements are fulfilled as soon as possible. At a high level, a single Access Management solution must be able to meet the requirements of the four base cases: cloud security, mobile access, employee-facing intranet and control of client-side extranet access control.
Taking all these requirements into account, our company started working with open-source Access Management systems and developed an own unique solution for several financial institutions and implemented it. Our company’s product is based on the OpenAM open-source code and has been further developed with additional modules, customized to customer requirements.
This unique AM solution is integrated with our own enhanced OpenDJ open source LDAP manager and this integration provides all the functionality required for complex banking applications.
The services provided in the Access Management (AM) – typically a self-developed solution
Installation, configuration and maintenance of the self-developed AM program.
The self-developed AM-OpenDJ solution currently provides access to customers to their bank/insurance WEB and mobile pages. In this two large Hungarian financial institutions the customers have to use our solutions for secure payment processing too.
With the self-developed multi-factor authentication solution, thousands of payment transactions are authorised every day to the highest standards.
Our solution has been used to protect access to internal network resources. This configures, controls and audits the access to IT resources for staff and services.
We can develop our own product by adding new features according to your specific requirements.
The own product has been developed based on the open-source code of OpenAM, with additional modules, adapted to customer needs.
Agent and OAuth2.0-based authentication support for web and mobile applications.
Self-developed LDAP server integration based on open-source code of OpenDJ.