mini_logo

HOW IT WORKS

how_top_left
IDentia provides a flexible and robust online IdAM solution designed for extended enterprise in cyberspace. It implements an identity bridge that integrates the flexibilty of OpenID with the robustness of SAML, enabling PKI-based authentication and Attribute-Based Access Control (ABAC).

KEY CAPABILITIES

1
ENHANCED IDENTITY TRUST
With IDentia, user identities and attributes are managed via centralized identity providers, and accessed using PKI based authentication. This consolidation offers the most secure level of verification possible.
2
ATTRIBUTE-BASED ACCESS CONTROL
IDentia utilizes Attribute-Based Access Control (ABAC) to determine access credentials. The ABAC model is more dynamic than earlier Role-Based Access Control, as it allows for more nuanced credentials than just security role.
how_bottom_right
SINGLE SIGN-ON AND SINGLE LOG-OUT
IDentia allows Single Sign-on and Single Log-out on multiple trusted locations across the extended enterprise.
CENTRALIZED USER AUTHENTICATION CAPABILITIES FOR
DISTRIBUTED WEB APPLICATIONS AND SERVICES

HOW IDENTIA WORKS

WHY IDENTITY FEDERATION
IDentia offers a solution that moves the responsibility of user authentication away from individual web servers to centralized or federated identity providers, reducing the complexity of credential management and authentication for each participating web site.
When a user is accessing a web site or relying party (RP), the user is redirected to the appropriate Identity Provider (IdP), which is responsible for authenticating the user, and optionally providing various attributes about that user back to the RP. Once a user is authenticated, he or she can move between multiple RPs without re-authentication, enjoying the benefits of Single Sign-On (SSO). IDentia offers IdPs under multiple protocols such as SAML, OpenID and OpenID Connect; and IDentia RPs are also enabled with these standards.
With IDentia, the level of user privacy also increases because all user identity and attribute information are maintained in or are accessible only by the IdP. The user identity information is not revealed to any party other than the RP and IdP during the this process.
WHY ABAC
IDentia offers localized user authorization via policy driven ABAC. The traditional Role Based Access Control (RBAC) is not a flexible approach for large enterprises because in an environment with hundreds of users, they will not all fall into the same set roles. IDentia solves this problem by using ABAC to offer a more fine-grained access control.
ABAC evaluates user attributes to grant access rights. Attributes can be as precise as IP address, or as broad as organization. ABAC grants access rights based on eXtensible Markup Language (XML) policies. Such policies map user attributes to resources such as directories, URLs, or files.
Download a free trial version of IDentia today!