Let's Talk About the Hottest IAM Topics of 2024

Explore the most impactful IAM topics of 2024 with actionable insights to enhance your identity strategy. From boosting security with Physical Identity and Access Management (PIAM) to preparing for Google Chrome’s distrust of Entrust certificates, we're helping you stay ahead with the information that matters most.

What Is Physical Identity and Access Management (PIAM)? Part I

Physical Identity and Access Management (PIAM) is a framework that integrates business processes, policies, and technologies to manage identities and their physical access to facilities. It ensures that only authorized individuals can access specific areas, enhancing security and compliance.

Key Components of PIAM:

• Identity Management involves managing core identities like permanent employees who need daily access, and extended identities such as contractors, vendors and visitors requiring occasional or regular access.
• Access Orchestration automates access management tasks, ensuring compliance and tracking access activity.
• Visitor Management differentiates between various visitor types and manages access based on specific needs and schedules.
• Credential Management involves creating, issuing, managing and revoking access credentials while tracking credential usage to detect suspicious activity.

Real-Life Scenario: Imagine an employee leaves the company but retains access to certain areas due to manual offboarding errors. PIAM automates these processes, ensuring no gaps in security.

Why PIAM Matters: PIAM enhances both physical and information security by providing a seamless way to manage access, automate tasks, and comply with regulations.

Here's a deeper dive into PIAM.

How to Prepare for Google Chrome’s Distrust of Entrust Certificates: A Comprehensive Guide for Enterprises

Starting October 31, 2024, Chrome version 127 and above will no longer trust new TLS/SSL certificates from Entrust. This change will impact website security, user trust and traffic.

Key Points to Consider: Certificates issued before November 1, 2024, will remain trusted until they expire. Websites using Entrust certificates will trigger security warnings in Chrome 127+, affecting user trust and traffic.

Steps to Prepare: Begin by inventorying and assessing all TLS/SSL certificates across your infrastructure to identify those issued by Entrust. Evaluate and choose a trusted certificate authority, considering options like HID Enterprise SSL for robust management and automation. Develop a migration plan with a timeline for certificate replacement, allocate resources and test functionality. Replace and revoke old certificates after testing, and keep all relevant teams informed throughout the process.

Next Steps: Proactive planning is essential to minimize disruption. Diversify by using multiple reputable CAs to reduce dependency on a single provider.

Here's a more detailed guide.

Need Help? Our experts are here to assist with seamless transitions.

What Is Your Onboarding Process Telling Your Customers?

Your onboarding process is more than just a series of steps; it’s a critical touchpoint that shapes your customers’ perceptions and sets the tone for your relationship. A seamless and thoughtful onboarding experience can significantly enhance customer satisfaction and loyalty.

First Impressions Matter: The initial interactions during onboarding are crucial. They reflect your company’s values, efficiency and commitment to customer success. A well-structured onboarding process demonstrates that you value your customers’ time and are dedicated to providing a smooth experience.

Building Trust and Confidence: Effective onboarding builds trust and confidence. By providing clear instructions, timely support and personalized guidance, you show customers that they are in capable hands. This fosters a positive relationship and encourages long-term engagement.

Feedback and Continuous Improvement: Onboarding is also an opportunity to gather feedback. Listening to your customers’ experiences and making necessary adjustments can lead to continuous improvement. This proactive approach enhances the onboarding process and shows customers that their opinions matter.

How do you ensure your onboarding process leaves a lasting positive impression? Get all the details.

The Top 5 Questions About MFA for CJIS (And Their Answers)

As of October 1, 2024, the FBI mandates multi-factor authentication (MFA) for accessing criminal justice information (CJI). This aims to protect sensitive data from cybercriminals. Here are the top five questions about these new requirements:

1. What is MFA? MFA requires additional proof of identity beyond usernames and passwords. This can include a physical form factor like a smart card secured by a PIN or a combination of a smart card and a fingerprint.
2. When is MFA required? MFA is needed whenever accessing CJI, whether from a corporate environment or a personal device. This includes logging into workstations on a corporate network or accessing web applications containing CJI.
3. How to implement MFA? Implementation varies by agency. Options include MFA software for quick deployment or smart card-based solutions for long-term infrastructure investment. The choice depends on budget, needs and existing systems.
4. What if I’m not compliant? Non-compliance can lead to denial of access to CJI and monetary fines. The FBI conducts audits every three years, with agencies expected to self-report annually. Identifying and planning to address missing requirements shows due diligence.
5. Where to get help? HID offers trusted identity solutions and has assisted many agencies with CJIS compliance.

Go here for a deeper dive into these questions.

Latest Resources

[Analyst Report] 2024 Buyer's Compass: Passwordless Authentication for Enterprises and Consumers

[HID Blog] Ditch Passwords, Boost Productivity: Meet the Crescendo Family

[HID Blog] The Fastest Way to MFA Is Easier Than You Think — With the HID and Microsoft Entra ID Integration

[HID Video] Get More From Crescendo: More Flexibility, More Capacity for FIDO Keys and Stronger Security