Ping buys UnboundID, FIPS 201-compliant PACs
04 August, 2016
category: Biometrics, Corporate, Digital ID, Government, Health, Smart Cards
Ping acquires UnBoundID
Ping Identity announced that it has acquired UnboundID, a provider of customer identity and access management software, to help enterprises improve customer engagement. Terms were not disclosed.
The acquisition gives Ping a foothold in the consumer identity and access management market. With the addition of UnboundID, the Ping Identity Platform adds a scalable user directory for social login, customer preference and profile management. Ping plans to combine Unbound’s customer offering with its existing multi-factor authentication, single sign-on and secure access capabilities.
Steve Shoaff, CEO of UnboundID ,will join the Ping Identity executive team as Chief Product Officer, responsible for all of engineering and product management for the joint company.
The two companies have been partners for nearly two years and share more than 20 enterprise customers across the U.S., EMEA and Asia, including Cisco, Telus and Wawa. The combined company provides Identity and Access Management solutions for the world’s leading companies, including over half of the Fortune 100, and manages over 3 billion identities.
“UnboundID provides complementary capabilities for managing identities at large scale, which is of particular relevance for the rapidly growing customer identity challenges organizations are intending to address as part of their digital transformation strategies,” says Martin Kuppinger, founder and principal analyst at KuppingerCole.
This acquisition is the first for Ping Identity since being acquired by Vista Equity Partners in July.
Monitor Dynamics, Carillon partner for FIPS 201-compliant PACs
Monitor Dynamics and Carillon Information Security announced the availability of a FIPS-201 compliant PACs solution, using SCVP for PIV, CAC, PIV-I and CIV credential validation.
Combining the Monitor Dynamics’s SAFEnet PACS Solution and Carillon’s Pathfinder SCVP and Web Credential registration tool, the solution provides a way for U.S. Federal agencies to enable their PACS to be capable of validating any PKI based credentials issued by a trusted source such as those accredited through the U.S. Federal PKI bridge.
Carillon’s Web Registrar enables cardholders to register their card into the PACs via an online Web portal while guaranteeing that the PKI credential on the card is completely valid and trustworthy. Employees and visitors can register into the PACs their FIPS-201 compliant credentials from the comfort of their workstation. Once approved by the deploying agency’s security group, the visitor or employee validated credential can be pushed directly into SAFEnet, and appropriate permissions assigned. Not only does this save time, but audit and compliance objectives become easier to meet due to the use of the actual user’s credential, instead of having to tie visitor records back to the original visit request.
Validation of the PKI credentials is provided using Carillon’s Pathfinder SCVP Solution, both at time of registration, as well as continuously for the duration of the credential record in the SAFEnet PACs. This ensures that credentials revoked by the PKI issuer are also automatically de-activated in the SAFEnet PACs and are no longer granted site access.
The Carillon Pathfinder SCVP solution is designed for high performance and is capable of returning an SCVP PKI validation response in less than 100 milliseconds even in the complex environment of the U.S. Federal Bridge.
VASCO introduces health care solution
VASCO Data Security International unveiled MYDIGIPASS for Healthcare, a solution for health care organizations and vendors of health IT applications, such as electronic health record, electronic prescribing and patient portal applications.
MYDIGIPASS for Healthcare is a solution that delivers identity proofing, credential issuance, fulfillment, and authentication services in an integrated cloud-based platform. Identity proofing is provided by means of an in-person video call or remotely via Knowledge-Based Authentication (KBA).
MYDIGIPASS for Healthcare helps health IT vendors and hospitals to comply with regulations and standards, such as the DEA Interim Final Rule on EPCS, and regulations in New York and Maine that make EPCS mandatory. Moreover, VASCO is certified as a full-service Credential Service Provider under the SAFE-BioPharma FICAM Trust Framework at NIST SP 800-63-2 Level of Assurance 3.
MYDIGIPASS for Healthcare supports various authentication tokens, such as DIGIPASS GO 7, a FIPS 140-2 Level 2 certified one-time password hardware token, DIGIPASS for Mobile, a DEA compliant software authentication mobile application that operates without cellular service, and DIGIPASS for APPS Push Authentication that uses an encrypted secure communication channel.