ForgeRock Blog

Identity and Access Management (IAM) is a compelling tool and can be even more effective when used strategically.  The extent of the value depends upon how available you make identity to the business applications and services used in achieving business goals. As an IAM owner, this task is more difficult than it appears. Fortunately, organizations are increasingly understanding the value of IAM and how it is fundamental to digitally transforming business.

“Future money will know where it has been, who has been using it and what they have been using it for. The use of cash is already in decline and is certain to vanish from polite society.” David Birch, acclaimed commentator on digital financial services, controversially declares this in his book Before Babylon, Beyond Bitcoin. In it, Birch talks about how technology is changing money and then explores where it might be taking us.

As login journeys become more complex, the need to effectively monitor their performance becomes more important. In our last Intelligent Authentication blog post and video (include link), we covered how User Login Analytics (ULA) provide the necessary tools to deliver metrics and insight that improve login experiences. Using that as a jumping off point, we now do a deep dive into ULA and monitoring the performance of those login journeys. Understanding patterns in how users and devices  access services is critical.

The ForgeRock Open Banking Hackathon was a success! The event featured coders from all over, building applications against a fully working reference implementation of a PSD2 Open Banking standard. Chris Michael, Hackathon Judge and Chief Technology Officer at Open Banking, pointed out that this was the first hackathon to run using the full Open Banking Implementation Entity (OBIE) model bank, calling it 'a world first'.

Goldilocks may well have ended up an expert in Intelligent Authentication because she was onto something about that bowl of porridge: not too hot, not too cold, but rather just right. The Goldilocks principle, when applied to customer experience, helps determine the acceptable amount, type and detail of friction in a user login journey.

In the latest video in our Intelligent Authentication series, we cover how access to that data helps provide that “just right” experience for your customers.

What is OAuth2? It can seem quite complicated, but it doesn’t have to be. Before OAuth2, when you needed to give software services access to your account, you had to give that service your username and password. This meant there was no way to tell whether it was you or the agent accessing your data as a third party doing so on your behalf. That agent had access to everything in that account and you’d have to change the account password when you decided to cancel that service.

In a continuation of my first post around privacy and the rising tide of global data regulation, I explore why “leaning in to consent” is the best way for U.S. companies to ensure smooth sailing with their customers amid the murky waters of data policy innovation.

Before jumping into the exciting identity provider opportunities now facing telecom companies, let's briefly discuss the concept of a "Digital Native." My guess is that by now, everyone is familiar with the concept: someone born and raised amongst the widespread use of digital technology. By contrast then, the rest of us (pre-dating 1985-ish) are ‘Digital Immigrants’, destined to struggle in this new digital world order.

In this Hot Topics episode, Chief Innovation Officer at DBS Bank, Neal Cross, discusses the IoT opportunity his company is pursuing: utilizing IoT products to improve relationships with their clients.