Vendors
Aserto
Aserto uses the Topaz open-source authorization service, which provides fine-grained, policy-based access control in real-time for cloud-native applications. It sits on top of OPA and Google Zanzibar and provides a process to manage policies and data distribution across disparate environments.
Why worth watching
Their focus is to provide a developer-friendly solution that satisfies corporate requirements for control over the authorization environment.
AWS
Amazon Web Services, Inc. is a subsidiary of Amazon that provides on-demand cloud computing platforms and APIs to individuals, companies, and governments, on a metered, pay-as-you-go basis. Clients will often use this in combination with autoscaling.
Why worth watching
One of the major design characteristics for Cedar is the ability for both human and machine policy reasoning, that is, understanding policy definition.
Axiomatics
Axiomatics maintain corporate headquarters in Stockholm, Sweden and their North American headquarters in Chicago, Illinois.
Why worth watching
Support for developers has been extended with the ALFA policy creation, testing and deployment features of the Axiomatics Policy Server.
Cloudentity
Cloudentity was founded in 2018 and is headquartered in Seattle. Cloudentity has a full-featured CIAM and IDaaS solution. Their approach is cloud-first and one of their primary objectives is scalability; thus, they were an early adopter of micro-services architecture. Cloudentity focuses on Dynamic Authorization as the core element for CIAM. Cloudentity utilizes many of the latest container and orchestration technologies, such as Docker, Kubernetes, and Istio, to deliver their services. Their solution can run on-premises on CentOS, RHEL, or SUSE; and it is cloud-agnostic so it can be deployed public IaaS environments such as Alibaba, AWS, Azure, or GCP. They also offer their solution as SaaS delivered from public IaaS across multiple regions including US, UK, Europe, Australia. Cloudentity’s subscription pricing is based on the number of authorization grants performed per month regardless of how many active or eligible users the customer serves.
Cloudentity customers can import users via LDAP, REST, and SCIM. Social network registration and authentication can be used except Apple. Registration workflows are customizable in the GUI and allow fine-grained consent and sophisticated authorization evaluations. All typical account recovery mechanisms are present. Identity proofing is not built-in but can be configured via the policy framework. OTP, mobile push, and the most common authenticator apps are accepted.
Why worth watching
The administrative console is highly functional and intuitive, enabling customers to create detailed authentication and authorization policies using a flow-chart and drag/drop style interface.
empowerID
Based in Ohio (US), EmpowerID offers several products within its broader IAM portfolio, including EmpowerID Privileged Access Management (PAM). All applications within the portfolio run as SaaS, and EmpowerID software offers fully managed services. The only on-prime component is Cloud gateway on Win 10/11 - this creates the credentials and keys.
Why worth watching
The dashboard at the heart of EmpowerID is comprehensive in scope and does more than just open access to cloud services.
NextLabs
NextLabs is a mature supplier of policy-based access control. The company is based in San Mateo, CA, USA with a growing customer base in Europe and expanding markets in the Asia Pacific and Brazil.
Why worth watching
NextLabs’ strength is to deliver a no-code policy-based authorization solution that is versatile, supporting integration into any major enterprise application.
OpenIAM
OpenIAM commenced operations in 2008; it is self-funded but is currently negotiating venture capital investment. The company is headquartered in the US with operations in Europe (Portugal, Czech Republic, and Italy) and India.
Why worth watching
The company has a global clientele with a growing partner network.
Ping Identity
Ping Identity was founded in 2002 and based in Denver, Colorado. Ping Identity was among the first of the enterprise IAM vendors to adapt to consumer-facing requirements. Ping Identity products can be licensed standalone, as well as through solution packages. SaaS delivered products include PingOne SSO (cloud authentication and directory), PingOne MFA (cloud MFA for customers), PingID (cloud MFA for workforce), PingOne Risk (cloud risk management), PingOne Verify (identity verification for customers), PingOne Fraud (customer fraud detection), and more.
Why worth watching
Ping Identity’s cloud-ready software and SaaS solutions are highly scalable and offer maximum flexibility to customers in terms of support for standards as well as innovation for cutting edge use cases.
PlainID
PlainID is headquartered in Tel Aviv, Israel with operations in Europe and North America. Founded in 2014, the company is focused on building a leadership role in the management of policy-based access control.
Why worth watching
Their mission is to make their product “secure simple, and extensible.”
SGNL
SGNL is a start-up with a focus on centralized and continuous access management. Company headquarters are in Palo Alto, CA.
Why worth watching
A core component of the solution is a graph database which ingests data from multiple data sources and compiles a rich record (graph) of each identity’s details and relationships from those sourced systems of record.
Strata
Strata Identity, Inc. was founded in 2019 by individuals with long experience in the identity access-control sector. The company is headquartered in Boulder, Colorado USA with a branch office in Canada.
Why worth watching
Strata focusses on policy orchestration, meaning the product integrates various identity silos, consolidating fragmentation, and relieving ‘legacy-lock’ that constrains many mature application environments. Maverics is an ‘identity orchestration’ platform, capable of augmenting identity information from different IdPs.
Styra
Styra Inc was founded in 2015 and is headquartered in Redwood City, CA USA.
Why worth watching
As the creator and maintainers of OPA, Styra has pioneered support for cloud-native environments and thus is a major proponent of the OPA framework for both authorization to cloud applications and infrastructure access control.
TrustBuilder
TrustBuilder is a Belgian company with Europe-wide support.
Why worth watching
SIEM tools can be integrated by log extraction or by direct SNMP calls from TrustBuilder to the customer’s SIEM monitor or integration with the SIEM APIs.
ViewDS
ViewDS has over 20 years’ experience selling IAM products to mission-critical industries such as Defense, Intelligence, Homeland Security, Large national PKI Systems, Air Traffic Control systems, Telecommunications Providers and Healthcare. The company is headquartered in Melbourne, Australia with operations in Singapore and the USA.
Why worth watching
Access Sentinel server solutions are installed in more than 40 countries.