Keeping it Simple to Keep it Secure

Okta
November 5, 2012

The New York Times recently ran an interesting profile of Peter Neumann, one of the preeminent computer scientists in the world. The story, “Killing the Computer to Save it,” details Neumann’s ideas for how to solve the inherent security vulnerabilities in computer systems that have been repeated again and again for the past 50+ years. Neumann’s thesis, essentially, is that simplicity is the key to security — advice that’s been mostly lost on the computer industry since its inception. John Markoff of the New York Times writes:

“’[Neumann’s] biggest contribution is to stress the ‘systems’ nature of the security and reliability problems,” said Steven M. Bellovin, chief technology officer of the Federal Trade Commission. “That is, trouble occurs not because of one failure, but because of the way many different pieces interact.” ... Dr. Bellovin said that it was Dr. Neumann who originally gave him the insight that “complex systems break in complex ways” — that the increasing complexity of modern hardware and software has made it virtually impossible to identify the flaws and vulnerabilities in computer systems and ensure that they are secure and trustworthy.”

Neumann is concerned with the security of computer systems as a whole, but his simplicity thesis holds true in identity management, too. One reason on-premise identity management has always failed is because it breeds complexity — complexity to your internal network, IT staff and certainly maintenance.

Maintaining the connections to multiple iterations of on-premises applications, which are riddled with their own vulnerabilities, is difficult enough. Adding secure connections from an on-premises SSO and IDM solution to cloud applications only compounds the complexity.

At Okta, we believe we have solved that complexity problem by closely integrating with on-premise directories and using the cloud to virtualize the SSO and IDM. IT administrators use a much simpler platform from a management, activation and integration perspective. Unlike on-premises software suite that must be built for multiple operating systems and varying on-premises network architectures, the cloud platform is abstracted and really just needs SSL communication protocols.

Security really can be a byproduct of keeping everything as simple as possible. The higher the complexity, the higher the risk of failure — whether from network issues, security vulnerabilities or (which seems to be the most common) misconfiguration faults.

Tags

IDM security simplicity
Previous
Next

April 8, 2024

The story behind Okta’s values

By Vijay Rao
We set our original values when Okta was founded in 2009, in the earliest days of Identity, both in terms of the market and our identity as a company. Our…

Read now

March 14, 2024

The State of Inclusion at Okta: Working to integrate equity

By Lindsay Ward
Today, we released our fourth State of Inclusion report, an annual report in which we share an overview of our current workforce demographics and Okta’s…

Read now

February 26, 2024

Three years of Okta’s nonprofit technology fellowship

By Victor Cordon Keenan Harrell
At Okta, we believe nonprofits should be as powerful as their missions. Nonprofit organizations do society’s most critical work — and technology is essential…

Read now

October 16, 2023

What makes Okta one of the Best Workplaces in Tech? 

By Sarah Schiff
At Okta, technology is at the heart of everything we do. We value innovation as one of our core values, and our mission has always centered around enabling…

Read now

September 28, 2023

Amplifying the power of recognition with Oktappreciate

By Laura Shanley
When were you last recognized at work? Was it to celebrate a big achievement or milestone along the way, or for lending a helping hand? We all want to be seen…

Read now