security

Nearly two decades ago, the U.S. Homeland Security Presidential Directive 12 (HSPD-12) established a new identity policy for federal employees and contractors. Its goal was a strong, government-wide approach to secure both physical and logical access. Today, the Personal Identity Verification (PIV) and Common Access Card (CAC) standards are…

Each month, we’ll highlight one of the founders of Okta Ventures’ portfolio companies. You’ll get to know more about them and learn how they work with Okta. This month we’re speaking with Moty Jacob of SURF Security. What is SURF Security, and what is your mission? SURF Security is trying to solve a fundamental problem in corporate security:…

Welcome to our Founders in Focus series, where each month we highlight one of the founders of Okta Ventures’ portfolio companies. You’ll learn more about them and how they work with Okta. This month, we’re getting to know Pangea and their mission to arm developers with security tools. What is Pangea, and what is your mission? Pangea is the world’s…

The Pentagon on Wednesday announced Google, Oracle, Amazon, and Microsoft as the awardees of the new cloud architecture called the Joint Warfighting Cloud Capability (JWCC), which will service across all of the Department of Defense’s (DoD) security domains and classification levels. The driving force behind this multi-cloud, multi-vendor era is…

The Department of Defense (DoD) is America’s largest government agency, with nearly 3 million active duty personnel, civilian employees, and reservists in more than 160 countries. It supports military families, dependents, veterans, and millions of recruits each year. Every Identity is vital to the DoD’s mission: protecting our national security. …

Here’s How to Resist Phishing in a Heterogeneous Workforce Organizations manage a broad ecosystem of users, from employees and contractors using the same access points to business partners collaborating throughout the supply chain. How do you keep this dynamic world connected, flowing, and, most importantly, safe from social engineering, like…

People create and exchange confidential, valuable information in SaaS tools daily, and admins are responsible for managing content from tens of teams and hundreds or thousands of users. That means IT teams need to support new, hybrid ways of working to maintain secure and efficient collaboration. To support this growing need, Okta and Miro…

This blog post is the second in a series focusing on credential phishing. Previously, in the blog The Need for Phishing-Resistant Multi-Factor Authentication, Mukul Hinge explained how threat actors are becoming more sophisticated, using various tools to overcome mitigations. Today’s post digs into the inner workings of Okta FastPass, explaining…

Part one of a multi-part series “Identity is the perimeter of security.” I was introduced to this phrase in 2012 after my manager returned from a conference. He scrawled that phrase at the top of the whiteboard in his office, and there it stayed until I eventually moved on from that organization in late 2013. Though I had already spent seven years…

You may be curious to find out how products and solutions are developed, implemented, adopted, and operated. The history of standards is a fascinating place to start.  Standards are well-defined, abstract interfaces that enable industries to develop and thrive. These interfaces ensure ecosystem players with different roles can work together and…