Gå ubegrenset med Magzter GOLD
Få ubegrenset tilgang til over 9000 magasiner, aviser og premiumhistorier for bare
Prøve GULL - Gratis
The Identity Illusion: Open-Source Trust in a Post-Perimeter World
DataQuest
|May 2025
Attackers no longer breach networks—they breach assumptions. With federated identity systems powered by open-source code and 80+ machine identities for every human user, security teams face a growing, ungoverned surface. CyberArk's Lavi Lazarovitz lays out why defence-in-depth must now start at the identity layer—and where most stacks fall short.
Once a back-end function, identity has become the new front line. In a world where authentication flows are more targeted than firewalls, and the lines between human and machine identities blur rapidly, security leaders are being forced to rethink their entire approach. The appeal of opensource identity providers like Keycloak and Authentik lies in flexibility—but is the price of agility an open backdoor? Minu Sirsalewala, Executive Editor, Dataquest, spoke to Lavi Lazarovitz, Vice President of Cyber Research at CyberArk Labs, to uncover the deeper truths behind identity security in the age of open collaboration and AI acceleration.
With the rise of open-source identity providers like Keycloak and Authentik, what blind spots are enterprise security leaders consistently underestimating in production-grade, multi-cloud environments?
Open-source tools like Keycloak and Authentik are valuable—they allow developers to integrate authentication and authorisation into applications with ease. However, attackers today are laserfocused on identity. They target credentials (preauthentication attacks) and cookies or tokens (postauthentication attacks). A recent example is the breach at Oracle, where attackers compromised the authentication system post-authentication.
Most security leaders do prioritise identity security, and many are adopting Identity Security Platforms. These platforms offer a holistic approach—spanning Identity Lifecycle Management, Policy Management, Privileged Controls, Discovery and Context (which help detect malicious activity), and Governance & Compliance. All of these are critical in preventing incidents like the recent Cisco attack.
Denne historien er fra May 2025-utgaven av DataQuest.
Abonner på Magzter GOLD for å få tilgang til tusenvis av kuraterte premiumhistorier og over 9000 magasiner og aviser.
Allerede abonnent? Logg på
FLERE HISTORIER FRA DataQuest
DataQuest
The GCC Boom: India's Journey from Cost Arbitrage to Innovation
India's 1,700+ GCCs are shifting from cost to co-creation. Can India convert scale, AI depth, and leadership ambition into true orchestration power for global enterprises?
16 mins
October 2025
DataQuest
'Je ne sais quoi' is now 'Je ne sais quAl': From metrics to experiences at Genesys Xperience 2025
At Genesys Xperience 2025, CEO Tony Bates showed how agentic AI is shifting businesses from metrics to empathy-driven experiences that build trust.
8 mins
October 2025
DataQuest
Legacy is not enough: Why enterprises need Al-native SaaS
Phenom's Kiran Menon shares how AI-first SaaS is redefining talent experience, augmenting legacy systems, and delivering measurable outcomes.
4 mins
October 2025
DataQuest
SAP's Jan Bungert on how business Al and data cloud are powering India's Techade
Jan Bungert, CRO of SAP Business AI, discusses how SAP is embedding AI into core applications and leveraging SAP Business Data Cloud to help Indian enterprises like Parle and Mahindra unlock trusted insights, efficiency, and measurable outcomes.
4 mins
October 2025
DataQuest
Why the operating system is no longer just plumbing: Raj Das on the future of RHEL
Many enterprises still think of the operating system as a background utility-something you set up once and forget. In reality, modern OS platforms like RHEL are dynamic, intelligent enablers of innovation.
5 mins
October 2025
DataQuest
Don't bolt Al onto ERP—build a connected system from day one
In an exclusive interaction with Dataquest, Paritosh Ladhani, Joint Managing Director of SLMG Beverages, outlines how the Coca-Cola bottler has moved from legacy processes to a fully digitised, AI-enabled, smart-factory ecosystem.
10 mins
October 2025
DataQuest
The future isn't about isolated robots
C Balaji, PSG Head, TVS Electronics draws a rough, but realistic, picture of factories that embrace robots for new business models as well as faster (and smarter) assembly lines and packaging. It's an age of managed automation, performance-based services, flexible manufacturing, mass customisation, vision-intelligence, serialisation and traceability across all areas. But would this world be with or without taxes, accidents and retrofitting? Let's take a walk with Balaji around what's changing and what's staying.
4 mins
October 2025
DataQuest
Hitting 'Reset', Risking 'Reboot' - VMware's Bold Leap from Complexity to Clarity
VMware, under Broadcom, is redefining cloud with VCF 9.0-simplifying portfolios, reshaping partner strategy, and positioning as a product-led platform.
4 mins
October 2025
DataQuest
Feeding the Al beast, with some beauty
Jameson Mendonca, Power Generation Business Leader, Cummins Power System opens up some pistons of carbon hunger of modern data centres while he also shows how Natural gas, Hydrotreated Vegetable Oil, Life Cycle Assessments (LCAs) and Environmental Product Declarations (EPDs) can weld well in this new era. And why we should we worried about scope 1 and 2 in the race to be no.1 in AI.
6 mins
October 2025
DataQuest
We allow you to say No!
What's ETA status of real consent, useful personalisation, technology for the everyday commuter and data ethics in the super-busy travel terminal? Anytime now or are we still catching this bus?
4 mins
October 2025
Listen
Translate
Change font size