ZERO TRUST FOR APIS AND DISTRIBUTED SERVICES

Don’t Trust Anything.

Authenticate, Authorize and Audit All Modern Applications

AUTHORIZEAnything and Everything in a transactionThe Network (TLS, mTLS)The Service/APIAUTHENTICATEAUTHENTICATETHE DATAAUTHENTICATEAUTHENTICATEThe Requestor (User/ client)
HOW

Cloudentity Simplifies Everything.

Automatically Discover
New Apis, Microservices, functions and Kubernetes

Detect and Align
Trusted service instances into the machine identity ecosystem.
Token exchange x.509 certificate. For oauth client

Seamless Intergation
Cloud-native API’s, Microservices, Kubernetes, Service Mesh, API Gateways

BEGIN
+USERMACHINE

AUTHENTICATE

The Requestor (User or Machine)

Authenticate the User (MFA, FIDO, uid/pwd)

ID proof the user e-KYC

Cloudentity allows the rapid integration of any API based eKYC or user authentication product that is API driven

AUTHENTICATE

The Service and Workload

Authenticate the Workload SPIFFE

Authenticate the workload x.509 certificate based Authentication.

Link SPIFFE, Oauth and x509 to automate identity assignment to services

Decouples machine Identity away from the IdP and proprietary libraries

Extends the usability of Identity data to apps.

AUTHENTICATE

The Transactional Data

Principle of least privilege

Fine-Grained Authorization ensures that Only the data required for the transaction is allowed to be passed between the client & servicer

Cloudentity policies cover authorization from connection grade to coarse grained to data element level granularity in one policy engine