Latest news with #IdentityManagement
Yahoo
04-08-2025
- Business
- Yahoo
Descope Enhances Agentic Identity Hub To Provide Policy-Based Security Guardrails for AI Agents
The industry-first Agentic Identity Control Plane delivers scope-based access control, monitoring, and identity management across the AI agent lifecycle LOS ALTOS, Calif., Aug. 04, 2025 (GLOBE NEWSWIRE) -- Descope, the drag & drop external IAM platform, today announced the launch of Agentic Identity Control Plane, an industry-first solution that enables security teams to institute policy-based governance, auditing, and identity management for their AI agent and Model Context Protocol (MCP) ecosystems. The Agentic Identity Control Plane builds on top of the existing Descope Agentic Identity Hub to mark a huge step forward in Descope's vision of becoming the identity provider for AI agents. As AI agents, LLMs, and MCP servers continue gaining rapid adoption, security leaders grow increasingly concerned about unauthorized AI agent adoption, which can lead to an increased attack surface, risk compliance issues, and pave the way for rogue AI agents gaining escalated privileges. A survey of 400+ CIAM decision-makers commissioned by Descope found that 57% of respondents feel worried about AI agents accessing unauthorized data or sharing data with unauthorized users. Identity management is critical to the secure adoption of agentic AI, as evidenced by the fact that 5 of the OWASP Top 10 Threats for GenAI have authentication and authorization related mitigations. The Descope no / low code external IAM platform helps organizations easily create, modify, and manage identity journeys for their consumers, business customers, partners, AI agents, and MCP servers using visual workflows. Hundreds of customers including GoFundMe, Databricks, Navan, and use Descope to enhance customer experience, help prevent account takeover, and get a 360 view of their customer and machine identities. In April 2025, Descope announced Agentic Identity Hub, a suite of capabilities that solves authentication and authorization challenges for developers building AI-compatible APIs, remote MCP servers, and AI agents. Today's release further enhances Descope's agentic identity offering and provides enterprise security teams with critical oversight into identity management and governance for both internal and external-facing AI capabilities announced today enable: Scope-based access control through a policy engine to tightly control how AI agents and MCP clients / servers access corporate resources. Security teams can restrict AI agent access to specific scopes within specific third-party tools, as well as enact policies based on user roles and hierarchies. Enterprise-grade monitoring and auditing capabilities to help security teams gain visibility over their AI agent risk surface, spot access control errors and misconfigurations, and identify potential rogue AI agents before they do damage. End-to-end identity lifecycle management for AI agents, including dynamic and static AI agent registration, configurable user consent flows, granular authorization scopes, token management and storage, and visibility into how AI agent identities and human identities are linked. 'No CISO wants to block the adoption of agentic AI and MCP at their company, but they are taking on an increased risk responsibility with every new AI agent or MCP server created within their organization or connecting with their products,' said Slavik Markovich, Co-founder and CEO of Descope. 'The Agentic Identity Control Plane delivers easy to use and comprehensive policy control and monitoring tools that security teams need for secure, scalable AI adoption.' To cultivate further adoption of secure agentic identity infrastructure within AI systems, Descope is hosting its inaugural Global MCP Hackathon from August 12 to September 8. Interested AI developers and tech leaders can RSVP for the hackathon opening night event here. Resources Blog: Descope for AI: Descope AI demo microsite: Global MCP Hackathon: About Descope Descope is a drag & drop platform to help organizations manage all their external identity journeys. Our no / low code solution helps organizations create, modify, and secure authentication and authorization journeys for end users, business customers, partner applications, AI agents, and MCP servers. Hundreds of businesses use Descope to improve customer experience, prevent account takeover, and get a 360 view of their customer and machine identities. Media Contact Erica Anderson Offleash for Descope descope@ A photo accompanying this announcement is available at in to access your portfolio
Gulf Business
04-07-2025
- Business
- Gulf Business
Why identity security needs standardisation, AI, and a passwordless future
Mark Whelan, Head of EMEA Growth Markets at Okta. As organisations accelerate their digital transformation journeys, identity has become the new security perimeter, and the most critical layer of defence against modern cyber threats. Yet, with a growing number of SaaS applications, fragmented security frameworks, and evolving compliance mandates, securing identity is more complex than ever. Okta, a global leader in identity and access management, is working to change that. From championing a new Identity Security Standard to rolling out AI-driven threat protection and embracing a passwordless future, the company is aiming to redefine how enterprises approach identity. Mark Whelan, Head of EMEA Growth Markets at Okta, shares how the company is building a more secure, scalable identity ecosystem, and what lies ahead for the future of identity management. Q: What are the key objectives of the new Identity Security Standard, and how will it elevate identity protection across SaaS platforms? The Identity Security Standard initiative is about creating a unified, standardised framework to securing identity across all enterprise applications. Its core mission is to provide a common framework that SaaS builders can rely on to meet the increasingly complex security needs of their customers. By standardising identity practices, we aim to make enterprise apps secure by default, fostering an open ecosystem. This move enhances end-to-end security for enterprise SaaS platforms. Q: Okta's recent solutions like Governance and Identity Threat Protection aim to build a secure ecosystem. What sets Okta's approach apart from others in the industry? What differentiates Okta is our commitment to delivering complete and unified identity management. Our platform integrates seamlessly with existing IT ecosystems, which means customers don't have to choose between compatibility and innovation. We focus on high availability and always-on security, ensuring that protection is continuous and resilient. Importantly, we also emphasise user experience. There should never be a trade off between security and usability. Q: How does the Okta Secure Identity Commitment (OSIC) influence client security practices? Could you share any notable examples? One of OSIC's core focuses is promoting phishing-resistant authentication. Beyond that, it reflects our ongoing investment in next-gen tools, including the use of AI and emerging areas like Identity Security Posture Management. The results speak for themselves: clients have seen up to a 90% reduction in credential stuffing attempts over 90 days, and in just a single month, OSIC's protective mechanisms have blocked 2 billion potentially malicious access requests. These outcomes underscore how deeply OSIC is influencing operational security in real time. Q: How is Okta leveraging AI in identity security, and what role do you see AI playing in protecting against future threats? AI plays a pivotal role in our identity threat protection strategy today and will only become more critical moving forward. Currently, AI enables real-time threat detection and behavioural anomaly analysis, which means capabilities that are essential for identifying risks before they escalate. In the future, we see AI enhancing both security and user experience by analysing vast signals more efficiently and automating response mechanisms. This transition from reactive to proactive identity security means we can predict and prevent threats before they occur. Tools like Okta's AI-driven Identity Threat Protection are already showing how transformative this approach can be. Q: How does Okta ensure that new features effectively combat identity-based attacks, and what challenges do you face in staying ahead of these threats? We take a customer-first approach to product development, working closely with organisations to understand the challenges they face. This gives us a comprehensive view of the industry and the market. To address identity-based attacks, we rely on a combination of real-time risk monitoring, adaptive multi-factor authentication (MFA), and AI-powered detection. These systems continuously evaluate user behaviour, flag anomalies, and respond dynamically to threats—offering protection that extends far beyond the login screen. Of course, staying ahead isn't easy. The pace of attack sophistication is accelerating, and striking the right balance between robust security and seamless user experience is always a challenge. Our solution is to continuously evolve and integrate with a broad range of tools, ensuring we stay resilient as the ecosystem grows more complex. Q: Looking ahead, what major shifts do you expect in identity management over the next decade? That's the billion-dollar question. It's always tricky to predict the future, but some trends are already becoming clear. First, passwords are on their way out. Technologies like Passkeys are gaining traction, and we expect passwordless authentication to become the norm. Second, Zero Trust has gone from being a buzzword to a foundational principle; it's now standard practice, especially among digital-native organisations. We also anticipate stronger privacy regulations, and Okta is proactively building compliance and transparency into its solutions to help customers navigate this changing environment. Finally, AI will take centre stage. As it matures, AI will bring greater intelligence and automation to identity management, allowing organisations to predict and neutralise threats before they materialise.
Zawya
01-07-2025
- Business
- Zawya
Cisco Duo reimagines identity security to combat AI era threats
Cisco Duo unveiled an innovative, security-first Identity and Access Management (IAM) solution. Duo IAM protects against modern AI-driven identity threats, while maintaining user productivity. Building on its globally trusted multifactor authentication (MFA), Duo IAM sets a new standard for end-to-end phishing resistance without expensive hardware keys. Riyadh, Saudi Arabia – Cisco (NASDAQ: CSCO), the leader in security and networking, today unveiled Duo Identity and Access Management (IAM), a new security solution that transforms how organizations combat persistent identity-based attacks that are accelerating in the AI era. Identity is a prime target for bad actors, accounting for 60% of Cisco Talos Incident Response cases in 2024, because current solutions have critical weaknesses that attackers exploit. Duo IAM offers an innovative and security-first approach, with added protection built on its globally trusted multifactor authentication (MFA). Duo IAM is the latest advancement in Cisco's long-standing commitment to user-friendly Zero Trust security. 'The security industry is facing an 'identity crisis' as persistent identity-based attacks are among the most dangerous and costly challenges for security teams. Attackers don't need to hack in, when they can simply log in,' said Jeetu Patel, President and Chief Product Officer, Cisco. 'While identity is the foundation of strong security, traditional IAM solutions have failed to prioritize security despite increasingly sophisticated threats. With this massive innovation, Duo is moving beyond MFA and restoring trust in identity security with a fundamentally different approach that attackers hate and users love.' Security-First Identity and Access Management According to Cisco's 2025 Cybersecurity Readiness Index, nearly a third of companies worldwide rank identity as their top cybersecurity challenge, but traditional IAM solutions often treat security as optional rather than foundational. Purpose-built to protect against modern identity threats, Duo IAM enables organizations to securely manage their entire identity infrastructure. Duo includes a new User Directory to simplify storing user identities – including usernames, emails, and roles – and managing their access to resources. Paired with its existing capabilities including MFA and Single Sign On (SSO) to provide users with simple, easy and secure access to hundreds of applications from one login page, Duo now offers customers a comprehensive IAM solution. Open and flexible, Duo IAM also integrates effortlessly with existing third-party identity systems. The new Identity Routing Engine allows Duo to integrate with many identity providers either as an identity broker or as a secondary identity provider. Incorporating security by default, Duo IAM frustrates attackers, while improving user experience and management costs. The Cisco AI Assistant is embedded in Duo to help organizations easily deploy and manage the new solution out-of-the-box. End-to-End Phishing-Resistance AI has accelerated the scale and complexity of account takeover through automated agentic social engineering. In response to rising threats, globally trusted Duo MFA now delivers the strongest form of authentication, without sacrificing convenience or purchasing expensive hardware keys. Recent innovations strengthening end-to-end phishing resistance include: Complete Passwordless: New option ensures a secure authentication experience without users ever having to use or remember a password. Proximity Verification: This capability uses Bluetooth Low Energy (BLE) to ensure a user's mobile and access devices are near each other when authenticating. Session Theft Protection: New enhancements to Duo Passport remove the reliance on browser cookies from authentication, protecting against session theft and hijacking. Unified Identity Intelligence Identity infrastructure is complex and often disconnected, creating blind spots where attacks and vulnerabilities go unnoticed. To help organizations continuously monitor and respond to changes in identity risk, Duo IAM integrates with Cisco Identity Intelligence, connecting identity and access data across the Cisco Security Cloud platform. With AI-driven behavioral analytics and Cisco's unmatched reach into the network, organizations gain comprehensive visibility, threat detection, and the ability to take graduated responses like quarantining an identity, killing active sessions or isolating the network. 'Cisco Duo has been a trusted security partner when it comes to MFA, and in today's environment we're eager to use these new capabilities to fight growing identity-based attacks,' said Todd Perrault, Senior Vice President of Client Advisory, Optiv. 'Duo's expanding suite of identity and access management solutions will deliver even stronger results for our customers with a security-first approach to identity while providing reduced friction for end users.' 'Identity breaches are no longer the exception—they're the rule. Seeing a trusted security brand like Duo broaden from access management to include identity management and provide a security-first approach in the market is both timely and refreshing,' said Todd Thiemann, Principal Analyst, Enterprise Strategy Group. 'Duo's commitment to maximizing security while minimizing user and admin friction is exactly what the industry needs. In particular, their approach to end-to-end phishing resistance marks a major leap forward, not just in security, but also in ease of deployment, to combat the latest identity threats.' For more information about Duo and its new IAM solution, visit About Cisco Cisco (NASDAQ: CSCO) is the worldwide technology leader that is revolutionizing the way organizations connect and protect in the AI era. For more than 40 years, Cisco has securely connected the world. With its industry leading AI-powered solutions and services, Cisco enables its customers, partners and communities to unlock innovation, enhance productivity and strengthen digital resilience. With purpose at its core, Cisco remains committed to creating a more connected and inclusive future for all. Discover more on The Newsroom and follow us on X at @Cisco. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at Third-party trademarks mentioned are the property of their respective owners. The use of the word 'partner' does not imply a partnership relationship between Cisco and any other company.
Zawya
01-07-2025
- Business
- Zawya
Cisco Duo unveils next-gen identity protection amid rising AI threats
Cisco Duo unveiled an innovative, security-first Identity and Access Management (IAM) solution. Duo IAM protects against modern AI-driven identity threats, while maintaining user productivity. Building on its globally trusted multifactor authentication (MFA), Duo IAM sets a new standard for end-to-end phishing resistance without expensive hardware keys. Dubai, UAE – Cisco (NASDAQ: CSCO), the leader in security and networking, today unveiled Duo Identity and Access Management (IAM), a new security solution that transforms how organizations combat persistent identity-based attacks that are accelerating in the AI era. Identity is a prime target for bad actors, accounting for 60% of Cisco Talos Incident Response cases in 2024, because current solutions have critical weaknesses that attackers exploit. Duo IAM offers an innovative and security-first approach, with added protection built on its globally trusted multifactor authentication (MFA). Duo IAM is the latest advancement in Cisco's long-standing commitment to user-friendly Zero Trust security. 'The security industry is facing an 'identity crisis' as persistent identity-based attacks are among the most dangerous and costly challenges for security teams. Attackers don't need to hack in, when they can simply log in,' said Jeetu Patel, President and Chief Product Officer, Cisco. 'While identity is the foundation of strong security, traditional IAM solutions have failed to prioritize security despite increasingly sophisticated threats. With this massive innovation, Duo is moving beyond MFA and restoring trust in identity security with a fundamentally different approach that attackers hate and users love.' Security-First Identity and Access Management According to Cisco's 2025 Cybersecurity Readiness Index, nearly a third of companies worldwide rank identity as their top cybersecurity challenge, but traditional IAM solutions often treat security as optional rather than foundational. Purpose-built to protect against modern identity threats, Duo IAM enables organizations to securely manage their entire identity infrastructure. Duo includes a new User Directory to simplify storing user identities – including usernames, emails, and roles – and managing their access to resources. Paired with its existing capabilities including MFA and Single Sign On (SSO) to provide users with simple, easy and secure access to hundreds of applications from one login page, Duo now offers customers a comprehensive IAM solution. Open and flexible, Duo IAM also integrates effortlessly with existing third-party identity systems. The new Identity Routing Engine allows Duo to integrate with many identity providers either as an identity broker or as a secondary identity provider. Incorporating security by default, Duo IAM frustrates attackers, while improving user experience and management costs. The Cisco AI Assistant is embedded in Duo to help organizations easily deploy and manage the new solution out-of-the-box. End-to-End Phishing-Resistance AI has accelerated the scale and complexity of account takeover through automated agentic social engineering. In response to rising threats, globally trusted Duo MFA now delivers the strongest form of authentication, without sacrificing convenience or purchasing expensive hardware keys. Recent innovations strengthening end-to-end phishing resistance include: Complete Passwordless: New option ensures a secure authentication experience without users ever having to use or remember a password. Proximity Verification: This capability uses Bluetooth Low Energy (BLE) to ensure a user's mobile and access devices are near each other when authenticating. Session Theft Protection: New enhancements to Duo Passport remove the reliance on browser cookies from authentication, protecting against session theft and hijacking. Unified Identity Intelligence Identity infrastructure is complex and often disconnected, creating blind spots where attacks and vulnerabilities go unnoticed. To help organizations continuously monitor and respond to changes in identity risk, Duo IAM integrates with Cisco Identity Intelligence, connecting identity and access data across the Cisco Security Cloud platform. With AI-driven behavioral analytics and Cisco's unmatched reach into the network, organizations gain comprehensive visibility, threat detection, and the ability to take graduated responses like quarantining an identity, killing active sessions or isolating the network. 'Cisco Duo has been a trusted security partner when it comes to MFA, and in today's environment we're eager to use these new capabilities to fight growing identity-based attacks,' said Todd Perrault, Senior Vice President of Client Advisory, Optiv. 'Duo's expanding suite of identity and access management solutions will deliver even stronger results for our customers with a security-first approach to identity while providing reduced friction for end users.' 'Identity breaches are no longer the exception—they're the rule. Seeing a trusted security brand like Duo broaden from access management to include identity management and provide a security-first approach in the market is both timely and refreshing,' said Todd Thiemann, Principal Analyst, Enterprise Strategy Group. 'Duo's commitment to maximizing security while minimizing user and admin friction is exactly what the industry needs. In particular, their approach to end-to-end phishing resistance marks a major leap forward, not just in security, but also in ease of deployment, to combat the latest identity threats.' For more information about Duo and its new IAM solution, visit About Cisco Cisco (NASDAQ: CSCO) is the worldwide technology leader that is revolutionizing the way organizations connect and protect in the AI era. For more than 40 years, Cisco has securely connected the world. With its industry leading AI-powered solutions and services, Cisco enables its customers, partners and communities to unlock innovation, enhance productivity and strengthen digital resilience. With purpose at its core, Cisco remains committed to creating a more connected and inclusive future for all. Discover more on The Newsroom and follow us on X at @Cisco. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at Third-party trademarks mentioned are the property of their respective owners. The use of the word 'partner' does not imply a partnership relationship between Cisco and any other company.
Globe and Mail
24-06-2025
- Business
- Globe and Mail
Okta's Cross App Access Expands Security Portfolio: Buy the Stock?
Okta OKTA is expanding its security portfolio with the launch of a new protocol, Cross App Access, which helps in securing AI agents. The company is working with ISVs in launching Cross App Access that will enable ISVs' enterprise customers to better connect their AI tools to other apps and data. End users ultimately benefit as the latest protocol removes repetitive authorization consent screens and manages agent access for better security and compliance. The latest protocol reflects Okta's commitment to protecting its customers deploying AI. The company's focus on protecting non-human identities (NHIs) and developers building secure agents is noteworthy. NHIs include service accounts, shared accounts, machines and tokens, and often operate outside traditional identity governance frameworks and can leave organizations vulnerable to security risks. Identity Security Posture Management and Okta Privileged Access help in solving the vulnerabilities related to NHIs. Moreover, for developers, Okta is gaining from the rapid adoption of the Auth0 platform. Auth for generative AI addresses the problem of AI agents creating unsecured NHIs by enabling developers to integrate secure identity into their GenAI applications. OKTA Benefits From Innovative Portfolio Okta's offerings include Okta AI, a suite of AI-powered capabilities embedded across several products, which empowers organizations to harness AI to build better experiences and protect against cyberattacks. The company benefits from strong demand for its new products, including Identity Governance, Privileged Access, Device Access, Fine Grained Authorization, Identity Security Posture Management, and Identity Threat Protection with Okta AI. OKTA's innovative portfolio is helping the company win clients, driving top-line growth. It exited first-quarter fiscal 2026 with roughly 20,000 customers and $4.084 billion in RPOs, reflecting strong growth prospects for subscription revenues. Customers with more than $100 thousand in Annual Contract Value increased by 70 sequentially to 4,870. The combined governance portfolio of Okta Identity Governance, Lifecycle Management, and Workflows has surged 400% over the past three years to nearly $40 billion at the end of the fiscal first quarter. Okta is benefiting from a rich partner base that includes the likes of Amazon Web Services, CrowdStrike, Google, LexisNexis Risk Solutions, Microsoft MSFT, Netskope, Palo Alto Networks, Plaid, Proofpoint, Salesforce, ServiceNow, VMware, Workday, Yubico and Zscaler. The company has more than 7,000 integrations with cloud, mobile, and web applications and IT infrastructure providers as of April 30, 2025. An innovative portfolio and rich partner base have helped Okta shares jump 25.2% year to date, outperforming the Zacks Computer and Technology sector, as well as peers CyberArk CYBR, Cisco Systems CSCO and Microsoft. While the sector has returned 0.9%, CyberArk, Cisco and Microsoft shares have appreciated 19.2%, 13.8% and 15.3%, respectively, over the same timeframe. OKTA Stock's Performance The stock is currently trading above the 200-day moving average, indicating a bullish trend. OKTA Stock Trades Above 200-Day SMA OKTA's FY26 Guidance Reflects Slowing Federal Business For fiscal 2026, OKTA still expects revenues between $2.85 billion and $2.86 billion, indicating 9-10% growth from the figure reported in fiscal 2025. Uncertainty in the federal business, along with challenging macroeconomic conditions, are headwinds for the company. However, Okta expects fiscal 2026 non-GAAP earnings between $3.23 and $3.28 per share, up from previous guidance between $3.15 and $3.20 per share. The Zacks Consensus Estimate for Okta's earnings has increased 9 cents over the past 30 days to $3.28 per share over the past 30 days. The earnings figure suggests 16.73% growth over the figure reported in fiscal 2025. Okta expects second-quarter fiscal 2026 revenues between $710 million and $712 million, indicating 10% year-over-year growth. The current portion of the company's remaining performance obligations (RPOs) is expected in the 10-11% range. Okta anticipates non-GAAP earnings between 83 cents and 84 cents per share. For second-quarter fiscal 2026, the Zacks Consensus Estimate for OKTA's earnings has increased by a nickel to 84 cents per share over the past 30 days. The earnings figure suggests 16.67% year-over-year growth. Okta Shares Trading at a Premium Okta shares are overvalued, as suggested by the Value Score of D. In terms of forward Price/Cash Flow, OKTA is trading at 23.23X compared with the broader sector's 20.13X and Cisco's 19.7X, suggesting a premium valuation. Price/Cash Flow Conclusion Despite a challenging macroeconomic condition and a stretched valuation, Okta rides on an innovative portfolio and an expanding clientele. Okta currently has a Zacks Rank #2 (Buy) and a Growth Score of A, a favorable combination that offers a strong investment opportunity, per the Zacks Proprietary methodology. You can see the complete list of today's Zacks #1 Rank (Strong Buy) stocks here. Zacks Names #1 Semiconductor Stock It's only 1/9,000th the size of NVIDIA which skyrocketed more than +800% since we recommended it. NVIDIA is still strong, but our new top chip stock has much more room to boom. With strong earnings growth and an expanding customer base, it's positioned to feed the rampant demand for Artificial Intelligence, Machine Learning, and Internet of Things. Global semiconductor manufacturing is projected to explode from $452 billion in 2021 to $803 billion by 2028. See This Stock Now for Free >> Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Microsoft Corporation (MSFT): Free Stock Analysis Report Cisco Systems, Inc. (CSCO): Free Stock Analysis Report CyberArk Software Ltd. (CYBR): Free Stock Analysis Report Okta, Inc. (OKTA): Free Stock Analysis Report
