Blog

Featured image for Protecting GraphQL applications through authorization and consent

Protecting GraphQL applications through authorization and consent

This article is part 2 of our GraphQL application protection series. In this article, we will build a GraphQL API server and protect its resources with externalized policies administered in the Cloudentity Authorization SaaS platform. We will also protect the GraphQL API endpoint data with a local policy enforcement/decision point for the app deployed within...
Read More
Featured image for Cloudentity Wins Cybersecurity Excellence Award in API Security

Cloudentity Wins Cybersecurity Excellence Award in API Security

We’re excited to share that Cloudentity has been named a Silver Winner in the API Security category for the 2022 Cybersecurity Excellence Awards! The Cybersecurity Excellence Awards honor individuals and companies that demonstrate excellence, innovation and leadership in information security. With over 700 entries this year, we’re honored to be selected as a winner. Specifically,...
Read More
Featured image for Externalized Authorization for GraphQL

Externalized Authorization for GraphQL

This article is the first part of a series to explore usage of the Cloudentity authorization platform for externalized GraphQL runtime authorization along with policy based access controls for GraphQL native constructs. Modern applications require runtime and flexible authorization controls to manage the security and risk of data exposed using technologies like GraphQL to various...
Read More
Featured image for What is Open Banking?

What is Open Banking?

Open Banking is the practice of consumer-initiated, secured and explicitly approved data sharing among financial institutions, investment companies, and third-party financial service providers. Privacy & Data sharing benefits both customers and banks. Customers get better, faster, and more secure access to services offering financial transparency and streamlined journeys, from account setup and payments to financial...
Read More
Featured image for Identity and Authorization At Cloud Scale

Identity and Authorization At Cloud Scale

The future has a lot to answer for. For decades we’ve been promised super-cool inventions that we still haven’t received - flying cars, jetpacks and IAM platforms that provide security, scale and manageability- all with wrapped up with 21st century automation. George Jetson’s job had two settings ("Start" & "Stop") and the computer did the...
Read More
Featured image for Why I Joined Cloudentity

Why I Joined Cloudentity

On September 7th, I started my new role as CEO at Cloudentity. ­­I couldn’t be more excited and honored to join this all-star team of deep industry experts on their mission of helping to better deliver and secure the world’s next-generation applications, APIs, and data. I’d like to take a moment to talk about my...
Read More
Featured image for Cloudentity Co-founder and CSO Nathanael Coffing Selected to Present at Authenticate 2021 to Discuss Why Authentication and Consent are Required for Zero Trust

Cloudentity Co-founder and CSO Nathanael Coffing Selected to Present at Authenticate 2021 to Discuss Why Authentication and Consent are Required for Zero Trust

Cloudentity Co-founder and CSO Nathanael Coffing has been selected as an on-demand speaker at Authenticate 2021, taking place October 18 - 20 at the Motif Hotel in Seattle, Washington as well as online. This year’s Authenticate conference, hosted by the FIDO Alliance, will convene cybersecurity experts to share business drivers, technical considerations and overall best...
Read More
Featured image for Cloudentity Featured in Gartner 2021 Hype Cycle for APIs: Accelerating Development Velocity with Authorization & Consent Automation

Cloudentity Featured in Gartner 2021 Hype Cycle for APIs: Accelerating Development Velocity with Authorization & Consent Automation

By Nathanael Coffing, CSO and co-founder of Cloudentity We are thrilled to share that Cloudentity was featured in Gartner’s 2021 Hype Cycle for Identity and Access Management (IAM) Technologies. The report serves as a key resource for security and cloud architects who are researching which technologies to implement in order to expedite application delivery and...
Read More
Featured image for When your modern IAM platform isn't modern: the case for authorization and identity microservices.

When your modern IAM platform isn't modern: the case for authorization and identity microservices.

By Nathanael Coffing, CSO and co-founder of Cloudentity A couple of weeks ago, a leading identity provider suffered a zero-day vulnerability that was immediately used maliciously to compromise financial, retail and healthcare customers.   The big question is— why was this "modern" IAM platform so appealing to security researchers and hackers alike, and how can we,...
Read More