Keeping the user’s experience simple, and making applications adaptable can easily become the worst enemy of security. The rule of thumb is that the more secure an application is, the more difficult it is to use and vice versa.
But difficult-to-use applications are not an option for any business – and neither is system vulnerability. To address these needs and those created by the trend of BYOD and federation for B2B collaboration and single sign on, SCE has developed ways to secure both the experience and the devices – mobile or not.
We were the first ones to add risk and policy information to the federation tokens and determine what kind of experience should take place for the user based on type of device, policy, behavioral access and risk. All of it without invalidating the token while still maintaining SSO capabilities.
SCE’s Systems integration services originated in the secure remote access world. In our early days, we spent the bulk of our time enabling businesses to remotely access the internal resources, such as Microsoft SharePoint and/or Exchange services. We were already fighting antiquated methods like full access VPN, overly complex protocols like IPsec, and simple web proxies.
What we determined is that the proper way to enable businesses to remotely access their resources is to grant access via proper authentication and authorization to their key business applications, and to simplify the user experience with robust single sign-on configurations.
Inevitably, authentication and authorization quickly became an area of expertise at SCE, and we are experts in risk-based multi-factor authentication for the enterprise – which had been making strides in the financial industry, but had not yet made a dent in the remote access world for the enterprise. We developed some of the first integration adapters to enable major players in the remote access space to benefit from the added security of risk-based multi-factor authentication. Now IT departments could comply with their respective industry regulations and internal policies, while keeping the user’s experience simple, friendly, and straightforward.
The more we worked with large enterprises across all verticals, the more we saw patterns and gaps in the identity lifecycle of the users – like not being able to onboard a new employee in the multiple directories an enterprise accumulates over time, and not being able to properly control access and authorization across the complex infrastructure that’s runs today's major corporations.
Today, we offer solutions to these challenges, tailored to the business needs of your company.