SPIFFE (Secure Production Identity Framework for Everyone) is an open standard for machine identity in dynamic infrastructure — providing workloads with cryptographic identities (SVIDs) that.
Archives: Glossary Terms
SOC 2 Identity Controls
SOC 2 (Service Organization Control 2) is a compliance framework for SaaS and cloud service providers requiring controls over security, availability, processing integrity, confidentiality, and.
Session Recording
Privileged Session Recording is a PAM capability that captures, stores, and indexes the complete record of privileged sessions — every command, keystroke, and screen activity.
Service Principal
A service principal is an identity used by an application or service in Azure to authenticate and access resources in a secure, controlled manner —.
Secret Sprawl
Secret sprawl is the uncontrolled proliferation of credentials, API keys, passwords, and tokens across an organization's codebase, configuration files, CI/CD pipelines, chat tools, and cloud.
Secret Rotation
Secret rotation is the process of regularly replacing credentials (passwords, API keys, certificates, tokens) with new ones to limit the window of exploitation if a.
SAS Token
A Shared Access Signature (SAS) token is an Azure security token that grants limited, time-bound access rights to specific Azure Storage resources — without exposing.
Ransomware and Identity
Modern ransomware attacks are fundamentally identity attacks — attackers first compromise credentials, then move laterally using privileged identities, before deploying ransomware. Identity security is the.
PKI
Public Key Infrastructure (PKI) is the framework of policies, hardware, software, procedures, and standards needed to create, manage, distribute, use, store, and revoke digital certificates.
Ping Identity
Ping Identity is an enterprise identity security platform providing SSO, MFA, directory services, and customer identity solutions — known for its strength in hybrid environments.