Tag
All topics →Identity and access management (IAM): provisioning, governance, lifecycle, and the controls that decide who can touch what across an organization.
154 stories, newest first.
Latest
I spent ten years engineering, scaling, and defending password-based authentication for a CIAM platform that grew to a billion users.
Read the article
We cancelled Auth0 over a year ago. Not because it stopped working, but because scaling to 350,000 monthly active users made the pricing model untenable.
Vercel breached after attacker compromised Context.ai, hijacked an employee's Google Workspace via OAuth, and accessed customer API keys and environment
Three AI framework attacks in one week expose how classic vulnerabilities are hiding in AI's foundational plumbing, putting millions of deployments at risk.
Silent Network Authentication verifies users in 1-4 seconds using SIM cryptography without any user action.
Passwords are responsible for 80% of data breaches. Passwordless authentication eliminates the attack surface entirely.
March 2026 marks passwordless tipping point: Microsoft forces passkey migration, regulatory deadlines hit, and adoption surges to 69% of consumers.
Honest comparison of the best secrets management tools in 2026. Covers HashiCorp Vault, AWS Secrets Manager, Doppler, Infisical, and Azure Key Vault with
CIAM is the technology layer that decides how your customers log in, what they can access, and how their data is protected.
60% of phishing breaches now bypass traditional MFA. Learn how AI-powered adaptive authentication and behavioral biometrics create continuous security
The decentralized identity market hits $7.4B in 2026. Every EU member state must deploy a digital identity wallet by year-end.
87% of enterprises are deploying passkeys. This complete playbook covers architecture decisions, enrollment UX, recovery design, and the deployment
AT&T's $177M settlement covers 73M customers, but the real story is how breach data from 2019 just resurfaced in 2026 with fully decrypted SSNs. Here's why.
TikTok's new U.S. ownership brought privacy changes that sparked mass deletions. Here's what actually changed and what it means for your data.
IAM is one of cybersecurity's most in-demand, and least understood, career paths. If you're a young engineer wondering where to start, this is the
A Comprehensive Guide for Investment Bankers, Private Equity, and Venture Capital Professionals
Authentication requirements block 75-80% of enterprise deals, costing B2B SaaS companies millions annually.
A Comprehensive Technical Guide for CTOs, CISOs, and Identity Architects
One year after launch, MCP has become the universal standard for connecting AI agents to enterprise tools, with 97M+ monthly SDK downloads and backing
Master customer identity security with our comprehensive 2025 CIAM buyers' guide. Explore 25 critical capabilities from single sign-on to threat
Master privileged access security with our comprehensive 2025 PAM buyers' guide. Explore 25 critical capabilities from credential vaulting to threat
Master workplace identity security with our comprehensive 2025 IAM buyers' guide. Explore 25 essential strategies from SSO to Zero Trust, with practical
Discover the top 10 user provisioning and governance tools that automate access management, strengthen security, and ensure compliance.
Explore the 8 best Active Directory management tools of 2025, from ManageEngine ADManager Plus to SentinelOne Ranger AD, to automate tasks, boost
Compare 2025’s top identity verification software. See features, pricing models, and best-fit use cases to reduce fraud, meet KYC/AML, and streamline onboarding
Looking for Delinea PAM alternatives? Discover 10 powerful privileged access management solutions offering advanced security features, seamless
Explore the top 6 alternatives to Firebase Authentication, from MojoAuth’s passwordless login to Okta’s enterprise IAM, and find a secure, scalable CIAM
Looking for AWS Cognito alternatives? Compare MojoAuth, Auth0, Okta, FusionAuth, and Keycloak for secure, scalable, and flexible customer identity
WorkOS too expensive or limiting? Compare SSOJet, Auth0, Okta, Entra ID, and FusionAuth, the best B2B identity platforms for SSO, SCIM, and
Looking beyond Auth0? Compare FusionAuth, Keycloak, Cognito, Firebase, and MojoAuth for SSO, MFA, passkeys, and social logins, plus pricing,
Twilio acquiring Stytch signals a major shift in developer CIAM. I've analyzed 20+ platforms, from Descope to Keyclock, to show you which deliver on
Your IAM strategy is obsolete. Organizations now manage 96 machine identities per human, AI agents make autonomous decisions at scale, and 45% of
Explore 10 top alternatives to RSA SecurID, featuring MFA, SSO, and risk-based authentication solutions.
Explore the top 10 Azure AD alternatives for 2025. Compare Okta, JumpCloud, OneLogin, Ping Identity, and more with detailed analysis of SSO, MFA, identity
Explore the top 10 fraud detection and prevention solutions for 2025. Compare SEON, Feedzai, Sift, Kount, and more with detailed analysis of real-time
Discover 8 proven solutions to prevent account compromise. Learn how MFA, password managers like Dashlane and Keeper, and advanced security tools protect
Explore the top 10 Identity Lifecycle Management solutions for 2025. Compare Apono, Microsoft Entra ID, SailPoint, Okta, and more with detailed analysis
Discover the top 11 Identity Governance & Administration solutions. Compare SailPoint, One Identity Manager, Oracle IGA, and more with detailed analysis
Discover the top 8 cloud directory solutions for modern businesses. Compare JumpCloud, Azure AD, Okta, and more with detailed feature analysis, pricing,
While you perfected human identity management, machines quietly took over your infrastructure.
Static API keys scattered across repositories create exponential security debt as AI scales. The solution? Credentials that live for minutes, not months.
70% of Americans feel overwhelmed by passwords, yet only half choose secure ones despite knowing the risks.
Traditional role-based access control assumes predictable behavior, but AI agents exhibit emergent behaviors no human anticipated.
Explore the leading age verification solutions for robust identity checks and compliance. Compare iDenfy, Sumsub, ID.
Explore 8 top Know Your Business (KYB) solutions for robust identity verification, ownership validation, and risk assessment.
Discover the top 10 KYC solutions for 2025. From Shufti Pro's global reach to Jumio's automated verification, find platforms that streamline identity
Transform your customer experience with the top 10 passwordless CIAM solutions. From Auth0's developer-friendly APIs to Amazon Cognito's AWS integration,
Explore the top 10 CIAM solutions that balance security with seamless customer experiences.
Protect against identity-based attacks with the top 5 ITDR solutions. From Microsoft Defender to Semperis DSP, discover platforms that detect compromised
Take control of your digital identity with the top 5 decentralized solutions. From IBM Blockchain to PingOne Neo, discover platforms that put you in
Navigate the complex world of PAM with our curated list of the top 10 Privileged Access Management solutions for 2025.
which IAM platforms can best safeguard your organization's digital assets and empower your teams with secure, efficient access.
Akamai Identity Cloud shuts down Dec 2027, but the real deadline is March 2026. Over 1,000 enterprises face forced migration as social login breaks.
Authentication migrations fail 40% of the time, costing millions in downtime. Learn the strategies security leaders use to avoid disaster, choose the
Navigate the $24B+ IAM market with confidence. This expert guide compares 29 leading identity solutions, from Okta to emerging players like HYPR.
Most companies are creating massive security blind spots by forcing AI agents into human identity systems.
🚨 ShinyHunters compromised Google, Qantas & dozens more using OAuth device flow attacks, bypassing MFA without exploiting a single software bug.
Most apps check user trust once during login, then ignore security changes for hours or days.
This deal represents the maturation of the identity market. The days of pure-play identity vendors competing primarily on features are ending.
Confused by the growing identity management landscape? This comprehensive guide breaks down every IAM category, from traditional workforce identity to
Choosing the right authentication provider? A comprehensive directory covers 30+ top CIAM solutions from enterprise leaders like Auth0 to innovative
Discover API security strategies for Identity and Access Management systems. This expert guide covers authentication protocols, authorization frameworks,
Confused by IAM, CIAM, and IDaaS? This guide breaks down the key differences to help you choose the right identity solution for your business.
Comprehensive Customer Identity and Access Management (CIAM) strategy guide for enterprise decision makers.
Most enterprises unknowingly pay a $700K+ annual 'password tax' through hidden costs like help desk tickets, productivity loss, and security risks.
The identity industry faces its biggest shift yet: machines now outnumber humans 90:1 in digital systems.
Struggling with Auth0's pricing or technical limitations? This comprehensive guide analyzes the top commercial and open-source authentication alternatives
Machines talk to machines without human intervention. But how do you ensure these automated conversations remain secure?
Core Identity Concepts Identity and Access Management (IAM) The framework of policies, technologies, and solutions designed to ensure the right
In a world where credential breaches cost companies millions, strong authentication isn't optional, it's essential.
Authentication pages serve as both security checkpoints and critical SEO touchpoints. While 80% of data breaches involve compromised credentials, properly
Authentication issues block 75% of enterprise SaaS deals, with companies losing millions in revenue annually.
Struggling with proprietary identity solutions? This comprehensive guide explores how open source CIAM platforms offer enterprises transparency,
Streamline access, reduce risks, and strengthen control with Enterprise SSO and Federated Identity.
Explore the evolving landscape of digital security as we delve into the distinctions between passkeys and passwords.
As cyber threats evolve, Identity Attack Surface Management (IASM) emerges as a critical approach that unifies existing security frameworks to protect
CIAM has evolved from a security tool into a business advantage. This comprehensive guide explores how CIAM solutions balance robust security with
Discover how Identity Attack Surface Management (IASM) helps protect digital identities, mitigate cyber threats, and enhance security across hybrid
This guide explores SAML, OAuth, and SCIM protocols central to enterprise single sign-on (SSO) systems.
Advanced deepfake detection combines AI forensic analysis, liveness checks, and behavioral biometrics to combat synthetic fraud.
Dive deep into the technical fundamentals of Authentication and SSO systems. Learn how HTTP, security protocols, and best practices work together to
Dive into the world of Security Assertion Markup Language (SAML), from its core concepts to practical implementation.
Discover the essentials of FIDO2 authentication implementation in this developer-focused guide.
Dive into the comprehensive guide to Customer Identity and Access Management (CIAM) for 2025.
Master enterprise CIAM performance optimization with comprehensive guide. Discover proven strategies for scaling authentication to handle millions of
Discover comprehensive security best practices for CIAM systems, including detailed implementation templates for authentication, fraud prevention,
Discover a comprehensive guide to implementing CIAM across five critical components: core configuration, security, privacy, API security, and monitoring.
Businesses face mounting cyber threats and data breaches from third-party vendors. Open-source CIAM solutions offer a secure, transparent alternative for
As artificial intelligence evolves, the concept of "identity" extends beyond humans. This article delves into the technical intricacies of non-human
Identity and Access Management (IAM) is vital for organizations to safeguard their digital assets.
Uncover SCIM's architecture, detailed workflows, and seamless interaction with SSO. Learn how this powerful protocol standardizes and automates identity
Dive into the identity and access management world with a technical comparison of OpenID Connect (OIDC) and Security Assertion Markup Language (SAML).
The shift towards AI-powered IAM promises to enhance security, improve user experiences, and simplify complex access management tasks.
Dive into a clear technical guide explaining JWT, OAuth, OIDC, and SAML. Learn their strengths and weaknesses and use cases to choose the right approach
Machines against machines, AI promises the future’s most decisive counterpunch against surging account takeover threats.
Discover the future of secure and innovative authentication with WebAuthn. Say goodbye to passwords and hello to passwordless auth and passkeys.
In the fast-paced world of the internet, where every click, every search, and every interaction leaves a digital footprint, the security of human
Secure your online accounts with out-of-band authentication. Learn more about cyber security and how it can protect your information.
Cybersecurity is a continuous journey, but with solid authentication systems, this trip can be safer for everyone on board.
Discover the power of federated identity management for seamless SSO and enhanced user access. Improve security and streamline authentication
OAuth 2 allows users to grant third-party applications access to their accounts without sharing their passwords.
Learn how to effectively manage risks associated with identity and access management with the comprehensive guide.
Looking for a comprehensive guide to mobile authentication? Look no further than our Developer's Guide!
Discover how Single Sign-On (SSO) is revolutionizing digital identity management. Learn about the benefits of SSO and how it is changing the game for
With the e-commerce market experiencing a surge in demand over the past couple of years, specific security threats that require adequate attention have
IAM systems that are backed by AI offer several benefits in three major aspects: authentication, identity management and secure access
BYOI, or Bring Your Own Identity, is an increasingly popular concept in identity and access management
CIAM becomes prominent and requires cross-functional collaboration and deliberate decision-making
Authentication, identity verification, and identification answer three different security questions. Confusing them is how products end up with weak controls.
Out-of-band authentication adds a second communication channel to verify the user. Here is how it works and where it earns its keep.
Traditional IAM was built for employees, not customers. Here are five signs your IAM cannot do the CIAM job and what to fix.
Whether we talk about inappropriate data collection or a loophole in managing consumer identities, anything could lead to compromised sensitive
Machine identities now vastly outnumber human ones in most companies, and they are poorly governed. Here is the risk and the fix.
Businesses have to be extra vigilant in safeguarding customer data. Minor mistakes can cause a massive data breach, violating data privacy regulations and
Decentralized identity is becoming a reality for users of blockchain-based applications, and it’s thanks to the proliferation of unique, verifiable identifiers.
The increasing number of account fraud and consumer data breaches indicate an immediate need for a robust mechanism to mitigate the risk.
Credential stuffing exploits password reuse at industrial scale. Here is how it works and the layered defences that actually stop it.
Identity as a Service is the cloud-delivered form of IAM. What IDaaS includes, why companies pick it, and how to evaluate the major platforms.
How your business can get the most out of AI and IoT while protecting your customers, employees, and other end-users.
Corporate account takeover attacks let criminals impersonate employees, drain accounts, and pivot inward. Here is how to detect and stop them.
Identity Governance and Administration is the policy and audit layer on top of IAM. Why every mid-sized organization now needs it and what to evaluate.
Many users switch websites when they are bombarded with lengthy registration forms too early. The solution to this is lazy registration
Over the years, social engineering attacks have been a regular phenomenon against companies. It has actually become more and more sophisticated.
Retail identity is uniquely hard: high volume, low margin, omnichannel, and fraud-heavy. Here are the challenges and how to address them.
What are the challenges businesses face related to identity management in IoT
Since the wave of digitization is sweeping businesses, managing an enterprise has become a much easier task.
API-first CIAM unlocks the speed digital businesses need without locking them into one vendor's UI. Here is why it matters.
Broken authentication is one of the most common and most damaging classes of web vulnerability. Here is how it happens and how to stop it.
Cloud identity management decides who can reach which resource, when, and how. A practical look at IAM and CIAM in the cloud era.
IAM is the discipline of giving the right people the right access and proving it after the fact. Concepts, controls, and how to design a modern program.
Identity proofing is how you verify a person is who they claim to be at sign-up. Here is why it matters and how it works end to end.
In reality, there are so many mistakes that can make your account vulnerable to cyber attacks.
Security problems are an alternative way to recognise your customers when they have forgotten their password, entered too many times the wrong passwords,
How I built LoginRadius into an IDaaS platform that handles hybrid environments, SSO, MFA, and compliance at scale.
Single-page apps changed how auth works. Here is how we approached SPA security at LoginRadius and the patterns worth keeping.
Mobile auth is harder than web auth. Here is how we approached enterprise mobile security at LoginRadius and what every team should ship.
Smart cities promise efficiency and convenience, but their backbone is identity, data, and trust. Here is what will make them work.
Why we shipped a consumer-level audit trail at LoginRadius and what it changed for enterprise risk and compliance teams.
Online gambling is a top target for fraud, ATO, and money laundering. Here is what operators must lock down to keep players and revenue safe.
Designing a CIAM platform that survives a decade of changing privacy laws, new threats, and new device types. What we did at LoginRadius.
Authentication proves who you are. Authorization decides what you can do. Here is why mixing them up causes most access-control bugs.
Shipping consent management at LoginRadius and what we learned about turning a regulation into a platform feature.
Streaming platforms hold rich behavioural data and high-value accounts. Here is how to secure both without breaking the viewing experience.
The pandemic-era shift to remote work permanently changed the threat model. Here is what stuck and how to defend against it now.
In the previous article (Guide to Digital Identity-Part 1 [https://medium.com/@dip_ak/guide-to-digital-identity-part-1-4b7c8fe45ee1]), we talked about the
Marriott International experienced a new data breach in mid-January 2020, which affected about 5.2 million guests.
Are you curious about the Digital Identity Ecosystem? If you have been looking for a good, reliable and easy-to-understand source of information and
When CCPA hit in 2020, most enterprises were unprepared. Here is what LoginRadius shipped to make compliance a configuration, not a rebuild.
Single sign-on authentication, or SSO, is becoming more commonplace as the digital revolution continues to evolve.
More than just individuals, a perfect CIAM platform needs to be able to incorporate. There are plenty of business processes and activities loaded with
In order to serve customers, conventional identity management is no longer enough.
Why we shipped progressive profiling at LoginRadius and how it changed the trade-off between data quality and conversion.
In 2018 we closed a $17M Series A to scale LoginRadius. Here is what the round meant and where the journey started.
The news of Canada to fine companies for not reporting data breaches is making headlines these days. Know what it means for your business.
