Industry Insight

  At Okta, we are highly invested in the latest ideas and practices around authentication and security—and that requires some myth busting. This blog is the first in a series of posts meant to tackle common misunderstandings and myths around Single Sign-On (SSO). See below for our full list of the myths we've seen (and busted!) around SSO. Single…

At Okta, we know that privacy is a growing concern at every organization. Privacy regulations around the world are evolving rapidly, and since the GDPR took effect earlier this year, we’ve seen the bar for privacy being raised increasingly higher. On November 1, Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) will…

Fall is here and Americans are preparing to cast their ballots in the midterm elections. There are many things on the minds of voters as they make their decisions on who to best represent their interests, and this year, another issue that they keep seeing in the news is security and the integrity of our elections. Recent revelations from the…

The White House Office of Management and Budget (OMB) is proposing a new strategy to increase cloud adoption across the Federal portfolio and is seeking public comments on the draft. Mark Settle, Okta Chief Information Officer, submitted the below comment to the Federal CIO and OMB—supporting the proposed strategy to utilize IT modernization for…

Password managers, such as Okta Browser Plugin can defend against phishing attacks. However, to prevent the compromise of passwords, password managers need to be hardened against attacks that confuse them into misidentifying websites. To help achieve this, the Okta Research and Exploitation team (REX) has created a tool, hack_url_re, to…

Every development team must decide which components to build in-house and which to offload to a 3rd party vendor. This decision is often difficult and hotly debated. After all, most developers chose this career in order to build cool things! Choosing to relinquish that control to buy a solution can seem contrary to their raison d’etre. But…

Data is the new oil—an observation not lost on hackers. In a world of growing interconnectivity, our most valuable digital assets—including our digital identities–have never been so exposed. After all, attackers of the digital age now simply log in, using stolen credentials to gain access to protected documents and privileged information. Relying…

While many organizations are moving to the cloud, the reality is this: most use a hybrid environment, and many of their on-premises components aren’t going anywhere soon. Examples of such hybrid components include virtual private networks (VPNs) and/or virtual desktop infrastructures (VDIs), which enable remote access to company resources…

The Lightweight Directory Access Protocol (LDAP) is an internet protocol that enterprise programs such as email, CRM, and HR software use to authenticate access and find information from a server. It is open, vendor-neutral, well supported, and flexible enough for storing information on internal and external users alike. Because of its scalability…

In any organization, there’s one key resource that cannot be replaced: people. Even though technology is seen as the great business enabler of the 21st century, organizations must still focus their efforts on managing their human resources. After all, it’s people who are responsible for thinking creatively, generating new products, solving…