Forrester

For Security & Risk Professionals

Report:Navigate The Future Of Identity And Access Management

Future Look: The Identity And Access Management Playbook

This report outlines the future look of Forrester's solution for security and risk (S&R) executives working on building an identity and access management strategy for the extended enterprise. We...

• Downloads: 1446
• Rating:

For Application Development & Delivery Professionals

Report:The Forrester Wave™: API Management Platforms, Q1 2013

Layer 7 And WSO2 Lead This Emerging Field

In Forrester's 15-criteria evaluation of application programming interface (API) management platform vendors, Layer 7 and WSO2 — and their solutions — rose to the top, followed by Intel,...

• Downloads: 578
• Rating:

For Security & Risk Professionals

Report:Identify And Influence Identity Stakeholders

Stakeholder Needs: The Identity And Access Management Playbook

This report outlines the stakeholder needs of the Identity And Access Management playbook. Forrester has identified lack of IT executive buy-in and attention as a chronic issue in projects related to...

• Downloads: 392

For Security & Risk Professionals

Blog:Enterprise “Overextended”? You Need To Evolve Your Identity Strategy

The rapid adoption of mobile devices and cloud services together with a multitude of new partnerships and customer-facing applications has extended the identity boundary of today’s enterprise....

For Security & Risk Professionals

Tool:Maximum Potential Impacts For Each Assurance Level

For Security & Risk Professionals

Report:Outsourcing Identity Assurance Will Be A Realistic Option Within Three Years

The Language Of Levels Clarifies The Value Of Assurance

Consumer-facing web applications are beginning to rely on third-party identity providers (IdPs) for user identification, authentication, and attributes delivered at runtime. This reduces costs and...

• Downloads: 621

For Security & Risk Professionals

Blog:Strong Authentication: Bring-Your-Own-Token Is Number Three With A Bullet

In approaching the research for my recently published TechRadar™ on strong authentication, at first I struggled a bit with overlapping concepts and terminology (as can be seen in the lively...

For Security & Risk Professionals

Report:TechRadar™ For Security Pros: Strong Authentication, Q1 2012

Traditional Methods Start To Sag, While Mobile-Fueled Methods Surge

The strong authentication landscape has undergone tremendous churn in recent years as new mobile-fueled technologies have come online and as RSA, the premier vendor of hardware one-time password...

• Downloads: 1006

For Security & Risk Professionals

Report:TechRadar™ For Security Pros: Zero Trust Identity Standards, Q3 2012

Road Map: The Identity And Access Management Playbook

This report outlines Forrester's solution to help security and risk (S&R) leaders develop their road map of IAM processes using Forrester's TechRadar™ methodology. The extended enterprise...

• Downloads: 480
• Rating:

For Security & Risk Professionals

Blog:Participating In Markets For Portable Identities In The Cloud: What’s The Coin Of Your Realm?

Many IT security pros are moving toward disruptive new authentication and authorization practices to integrate securely with cloud apps at scale. If you’re considering such a move yourself,...

For Security & Risk Professionals

Blog:Can You Join The API Economy While Maintaining Top-Notch Security?

If anything exemplifies the extended enterprise, it's the notion of the "API economy": Unlocking value in your organization's unique data and services by publishing open APIs (application...

For Security & Risk Professionals

Report:Apply Identity And Access Management Techniques To Consumer Data

Personal Identity Management

Customer intelligence (CI) professionals face increasing pressure to give consumers greater control over the data that organizations collect about them. Forrester has published a report predicting...

• Downloads: 328

For Security & Risk Professionals

Report:Work With Marketing Pros To Prevent Breaches

How To Protect Your Email Data

In facing security woes such as the Epsilon breach, email marketing professionals have received a wake-up call: Security failures can cost a lot — not just a lot of money but also goodwill with...

• Downloads: 168

For Security & Risk Professionals

Report:Introducing Forrester's 2013 Data Privacy Heat Map

To help security and risk professionals navigate the complex landscape of privacy laws around the world, Forrester created a data privacy heat map that highlights the data protection guidelines and...

• Downloads: 716

For Security & Risk Professionals

Blog:What The White House Cybersecurity Proposal Means: Don't Miss Jonathan Penn's Take

If you're in the habit of checking out only the Security & Risk Professionals blog, you might have missed Jonathan's takeaways over on the Vendor Strategy side: What The New White House...

For Security & Risk Professionals

Report:The Forrester Wave™: Enterprise Cloud Identity And Access Management, Q3 2012

Six Vendors That Matter Most And How They Stack Up

In Forrester's 15-criteria evaluation of cloud identity and access management (IAM) vendors, we identified the six most significant solution providers in this category — Covisint, Lighthouse...

• Downloads: 1206
• Rating:

For Security & Risk Professionals

Client Inquiry:What Are Our Options For Secure Access Solutions For A Web Interface?

We're looking for secure access solutions for a web interface that will enable some sort of strong authentication but doesn't use a two-factor password token. We're thinking of solutions that allow a...

For Security & Risk Professionals

Blog:Two-Step Verification Will End Consensual Impersonation

  A couple of months back, I advocated killing your password policies and applying some other techniques instead to make existing use of passwords more effective (including my hobby horse: take...

For Security & Risk Professionals

Blog:Fast Cloud Identity Provisioning

Back in July, I wrote about a new RESTful API that cloud providers and provisioning vendors are working on for doing identity provisioning and synching: Simple Cloud Identity Management, or SCIM...

For Security & Risk Professionals

Blog:A New Venn Of Access Control For The API Economy

Cloud providers and many federated IAM practitioners are excited about OAuth, a new(ish) security technology on the scene. I’ve written about OAuth in Protecting Enterprise APIs With A Light...

For Security & Risk Professionals

Report:Forrester's Data Privacy Heat Map Supplement

To help security and risk professionals navigate the complex landscape of privacy laws around the world, Forrester created a data privacy heat map that highlights the data protection guidelines and...

• Downloads: 78
• Rating:

For Security & Risk Professionals

Blog:The Mobile-Cloud Axis Needs A Modern Authorization System. XACML 3 Isn’t It

Andras Cser probed a sore spot in IAM last week with his post, “XACML Is Dead.” It’s a necessary conversation (though I did see a glint in his eye at the Forrester BT Forum after he...

For Security & Risk Professionals

Client Inquiry:Examples Of Personally Identifiable Information

Q

For Security & Risk Professionals

Report:Inquiry Spotlight: Consumer-Facing Identity, Q4 2012 To Q1 2013

The challenges of consumer-facing identity management, access management, and authentication differ in ways subtle and dramatic from those of the employee-facing variety. In fact, several vendors in...

• Downloads: 213

For Security & Risk Professionals

Report:Introducing The Customer Authentication Assessment Framework

Assess The Usability, Deployability, And Security Of Customers' Login Processes

Forrester clients often face a hybrid challenge with customer-facing websites: optimizing both security and usability. The tightest security can be a usability disaster, and the most user-friendly...

• Downloads: 77