Melpomene - Fotolia
SAN DIEGO -- In an effort to strengthen cloud identity security, Ping Identity introduced a new platform on Monday, as well as several additional features to its product line at the 2015 Cloud Identity Summit.
Ping's Identity Defined Security platform was designed to make federated identity the heart of enterprise security so employees can access a variety of applications, both on premise and in the cloud, through trusted devices based on their identities.
"The role of identity is playing an increasingly centralized role in the cloud," said Andre Durand, chairman and CEO of Ping Identity. "I think we have to make identity and security work together better to protect the cloud."
The platform is designed to manage identities for various parties, including employees, partners and customers using a federated architecture that can support authentication protocols such as SAML or OAuth. The Identity Defined Security Platform can secure web applications, APIs and even Internet of Things devices, and be deployed on premise, in the cloud, or in hybrid environments.
Durand said cloud migration has put the focus on creating strong identity security, adding that he's been surprised by the enterprise desire for -- and the speedy adoption of -- lightweight, cloud-friendly IAM systems.
"There's a large movement to collapse the size of the enterprise data center and move to IaaS and the public cloud," he said. "And they're not going to use traditional tools for Web access management because those tools are almost 20 years old now. They want something new."
Along with the platform, Ping also announced enhancements to existing products. For example, PingID, the company's cloud-based multifactor authentication product, now supports Apple Watch as a second factor tool, as well as Yubico's YubiKey USB tokens as backups in case mobile devices are lost or unavailable.
"We want to make the authentication process as simple as possible," said Jerrod Chong, vice president of solutions engineering at Yubico. "There may be cases where someone can't use their phone as a second factor and they need another form of authentication."
PingID also includes fingerprint readers for supported Apple and Samsung devices that have biometric security features. In addition, PingAccess was revamped. The product, which manages Web application and API access, will now allow administrators to create, enforce and update security policies via a management dashboard.
Lastly, the company updated its PingOne cloud-based identity-as-a-service (IDaaS) and single sign-on product so it can integrate with PingFederate, the company's federate identity technology, allowing cloud-based SSO to quickly integrate with an enterprise's on-premise identity stories as they build out their cloud presence.
The Identity Defined Security Platform is available now, and the new features will be available on June 29, 2015.
Learn more about how AWS cloud identity management secures data