RSA Adaptive IAM Goes Mobile with Acquisition of PassBan

RSA is excited to accelerate our vision for Adaptive Identity and Access Management (IAM) as we welcome San Francisco-based PassBan to the RSA-EMC family. PassBan is an innovative developer of mobile and cloud-based multifactor authentication technology. We expect PassBan’s technology and talent will help RSA accelerate delivery of our Adaptive IAM vision as well as broaden and strengthen RSA’s mobile partner ecosystem.


Rebooting IAM: Transforming IT at its Foundation

IAM must be retooled at its very foundation. We need to add intelligence and business context at the heart of IAM. It all starts with the user. If we get a solid handle on ‘who’ the user really is in the business context and ‘what’ they should have access to, all downstream functions like authentication and provisioning will be much more effective. This was the primary driver for RSA’s acquisition of Aveksa, the leader in business-driven identity management.


Dissecting a Cybercriminal Heist – Podcast #248

In May 2013, the U.S. Dept. of Justice indicted several members of a cyber criminal gang  allegedly responsible for the largest coordinated cash heist from thousands of ATMs across 26 countries. The scheme netted more than $45 million in less than a week and has the banking industry reeling at the manner in which this…

The Fragmented Picture of Mobile Security

I was in Munich last week, speaking at the European Identity and Cloud Conference in a panel on standards for mobile security. It was a very good session, not least because of the colleagues who joined me on the panel. John Sabo spoke about the work he’s doing in privacy frameworks.  Tony Nadalin spoke about…

Safeguarding Patient Information During Crisis

In light of the recent events I’ve reflected on how valuable electronic health records (EHR) and health information exchange (HIE) participation can be in a time of crisis to immediately access critical life saving data on impacted victims. EHRs not only allow for first responders to quickly access victims’ healthcare information, but also allows for more accurate ambulatory, ER and clinical decision making in life or death situations.

Adaptive IAM: On the Front Lines of Cyber Security

Like most technologies, Identity and Access Management (IAM) has been challenged by new business and IT trends that are causing serious disruptions in how we approach information security. The exponential growth of digital identities coupled with the increasing use of software as a service and mobile and cloud platforms have made the traditional perimeter all but disappear. As a result, legacy IAM tools that have been a security mainstay for decades are simply failing to keep up.

Security Monitoring Use Cases with RSA Authentication Manager

Organizations which deploy RSA Authentication Manager (SecurID) for enforcing two-factor authentication frequently think of their RSA SecurID solution only as an additional security control to enforce strong authentication to resources. However, by analyzing the wealth of log data that is generated by RSA Authentication Manager, organizations can gain valuable intelligence that can be useful to detect attacks and perhaps even predict new attacks.

Changes to the RSA Identity Verification Service

For more than 6 years, RSA, the Security Division of EMC, and LexisNexis® Risk Solutions have successfully collaborated in providing RSA’s consumer-oriented Identity Verification service which utilizes dynamic knowledge-based authentication (KBA) to validate user identities in real-time through a series of generated questions within databases containing billions of public and commercially available records.

In continuing this collaboration, we recently saw an opportunity to evolve our relationship so we could each focus more on our core competencies. On March 31, 2013, we sold LexisNexis the RSA Identity Verification service which RSA acquired through its acquisition of Verid in 2007.