One component is essential to empowering businesses, partners, and individuals in a digital landscape full of risk: a secure Identity Foundation. That’s why Okta proudly supports the Continuous Access Evaluation Profile (CAEP) and Shared Signals Framework (SSF) — initiatives driving innovation, interoperability, and trust in the Identity ecosystem. These efforts, highlighted in March at the first-ever SSF interoperability event at Gartner’s 2024 Identity and Access Management Summit in London, underscore Okta’s role in advancing open standards that deliver superior security and seamless collaboration.

Driving interoperability with CAEP and SSF

Okta is deeply invested in CAEP and SSF, two transformative standards shaping the future of Identity assurance and security signal sharing:

• CAEP: CAEP enables real-time evaluation of user access, ensuring that Identity and access decisions remain secure and contextually relevant as user behavior or conditions evolve. It provides organizations with dynamic, ongoing protection for sensitive systems and data.

• SSF: SSF facilitates secure, real-time signal sharing among software vendors to collaboratively detect and respond to threats like account takeovers and unauthorized access, enhancing threat intelligence across ecosystems.

These initiatives will be prominently featured at the upcoming Gartner IAM Summit on Dec 9–11, 2024, in Grapevine, Texas. Okta will participate in a CAEP Interoperability session demonstrating how CAEP-compliant solutions, including Okta’s, enable continuous protection and foster trust across partners. Okta products proudly feature the SSF Transmitter and the Receiver that are available for customers and partners to use.

Innovation in action: Okta Identity Threat Protection

Okta Identity Threat Protection exemplifies how CAEP and SSF can be leveraged to deliver cutting-edge security while fostering interoperability. ITP is designed to secure identities at every stage of the authentication lifecycle:

1. Identity Threat Protection detects threats using native security signals, FastPass, and intelligence from SSF and CAEP.

2. Leveraging real-time signals, Identity Threat Protection enforces adaptive, context-aware authentication policies to ensure only legitimate users gain access.

3. Through CAEP, Identity Threat Protection continuously monitors user activity and risk signals, dynamically adjusting or revoking access as conditions change.

By combining Okta native security signals with insights from trusted vendors via SSF and CAEP, Identity Threat Protection offers an unparalleled level of proactive and comprehensive Identity protection.

Key benefits of Okta Identity Threat Protection include:

• Proactive threat mitigation: Detect and remediate risks before, during, and after authentication.

• Collaborative defense: Harness a network of shared signals to improve threat detection accuracy across ecosystems.

• Continuous protection: Dynamically enforce access policies based on real-time signals to ensure ongoing Identity security.

With Identity Threat Protection, Okta delivers a seamless and secure user experience while collaborating with ecosystem partners to create a safer, more connected digital world.

Looking ahead: Eliminating Identity-based attacks with IPSIE

Okta is on a long-term mission to eliminate Identity-based attacks across the industry. In support of that vision, we have formed the Interoperability Profile for Secure Identity in the Enterprise (IPSIE) working group under the OpenID Foundation, collaborating with industry leaders like Ping Identity, SGNL, and Beyond Identity.

• IPSIE aims to establish a new Identity security standard that enhances end-to-end security across every touchpoint of the technology stack.

• The goal is to provide a framework that fosters an open ecosystem, making it easy for enterprises to build and use apps that are secure by default.

As a founding participant, Okta is contributing its expertise to help define these new standards. IPSIE represents a transformative step toward enabling interoperability, trust, and security across the Identity ecosystem, ensuring organizations can innovate without compromise.

At the Gartner IAM Summit, Okta will share insights into our leadership role in IPSIE and demonstrate how it will drive the future of secure, interoperable Identity systems.

Why Okta leads the way

Okta’s leadership in Identity security stems from our unwavering commitment to innovation, collaboration, and open standards. With solutions like ITP, active contributions to CAEP and SSF, and a pivotal role in IPSIE, Okta is helping businesses navigate the complexities of today’s digital environment while staying ahead of emerging threats.

Join us on the journey

The Gartner IAM Summit in Grapevine offers a unique opportunity to explore the future of Identity security and CAEP interoperability. With live demonstrations, expert panels, and insights into Okta’s latest innovations, attendees will see firsthand how we’re shaping a safer, smarter, and more connected digital landscape.

Please attend the session “Shared Signals Interop Demos: CAEP and RISC in Action” during either time slot. 

• Session 3: Tuesday 12/10 3:45–4:15 PM CST
• Session 5: Wednesday 12/11 1:00–1:30 PM CST