Radiant Logic, the leading provider of the federated identity solutions based on virtualization, today announced the 7.2 beta release of its RadiantOne Federated Identity Service, including VDS, ICS, CFS, and HDAP, the world’s first full LDAP V3.0-compliant Big Data Directory. The final version will be available at the end of Q1 2016.

Fully Encrypt Data at Rest with HDAP, Radiant’s Groundbreaking Directory Store

With its new attribute encryption functionality, RadiantOne now protects sensitive data while it is stored in HDAP, the RadiantOne Big Data Directory store. Directory administrators can store entries in an encrypted format, preventing confidential attributes from being read while stored in HDAP files, backup files, and exported LDIF files. Encrypting Radiant Logic’s cluster-based directory store ensures FIPS compliance for government agencies.

“By protecting data at rest, RadiantOne ensures that even if hackers break into a company’s system and steal its data, all they get is an encrypted image that’s of no use to them,” said co-founder and chief technology officer Claude Samuelson. “This means our customers with rigorous security requirements, such as government agencies, can be assured that their information is compliant with the latest measures and has an extra layer of security from malicious hack attacks.”

Easily Add Multi-Factor Authentication to Strengthen Security for Every App

RadiantOne 7.2 also offers support for multi-factor authentication, enabling companies to reinforce security by taking advantage of additional means, such as token cards, certificates, and biometrics. Traditionally, extending security for existing applications has been a difficult and intricate process. While there are many new ways to strengthen security, companies have long struggled with the difficulty of implementing these additional measures, since applications often offer weak authentication but are not programmed to accept additional security. The new plug-in mechanism makes it easy to add multiple external multifactor authentication modes to existing application making LDAP calls.

According to Radiant Logic co-founder and CEO Michel Prompt: “There are many essential applications that would benefit from stronger authentication. Unfortunately, adding additional security measures has long required companies to perform ‘open heart surgery’ by customizing each application. With plug-in support for multi-factor authentication, RadiantOne 7.2 makes it quick and easy to leverage third-party security methods, from token cards and certificates to biometrics. This reinforces security for RadiantOne and for every app that depends on our integration layer—without having to make any modifications at the application level.”

Protect Key Accounts with Privileged ID/Access Management Integration

The latest version of RadiantOne includes an embedded framework for integrating with Privileged Identity/Access Management (PIM/PAM) software. As an abstraction layer, RadiantOne must be able to connect to many data silos with credentials associated with the needed permissions. With this new framework, RadiantOne can now acquire the needed credentials from an existing PIM/PAM product such as CyberArk and others, adding an additional layer of security for key accounts and enabling better data governance. This helps companies meet compliance regulations and prevent internal data breaches through the use of privileged accounts.

RadiantOne 7.2 also adds support for PIV/CAC card authentication to the Control Panel, offering increased reassurance that configuration changes made in the Control Panel are more secure. Other security enhancements in this new version include support for GlassFish v4, as well as Java 8, which now enables GCM and its stronger cipher suites for more secure TLS communication.

Use Cloud Provisioning to Provide Identity for Azure AD, Salesforce, and More

When companies start moving toward the use of cloud applications, they quickly see additional provisioning challenges because each application requires a particular aspect of a user’s profile and not all users and groups are applicable to every application. Enterprises have long used RadiantOne to build a normalized, integrated image of their identity infrastructure, then create customized views of identity to meet the needs of each application. Since the rise of the cloud, they’ve also been able to push that tailored image to their IdP to secure cloud and SaaS applications. Now, with RadiantOne 7.2’s new cloud provisioning capabilities, customers can use that rationalized image of identity to populate cloud applications such as Azure AD and Salesforce, as well as Google Directory and PingOne Directory.

“The RadiantOne platform was already highly scalable, acting as a main identity integration point for the world’s most complex identity infrastructures,” Dieter Schuller, Radiant Logic’s VP of Business Development explained. “With this new release, we’ve added some key features for our customers by reinforcing the system with enhanced security functionality, as well as opening the system so that this identity image can be used to seed cloud directories. The system uses a simple drag and drop interface to build the identity image for each application and push that customized image to these cloud providers. Companies can even create special rules that govern the use of this data by each cloud platform.”

Server Management Enhancements with Improved Logging and Monitoring

This new functionality makes it easier for customers with cluster-based deployments to monitor the state of the services across all nodes, and for those with multiple clusters to monitor the state of inter-cluster replication.