Blog - soffid.com
Soffid provides full Single Sign On experience and full identity governance features. All in an open source, efficient and powerful software product. Security and productivity is now affordable.
571
page-template,page-template-blog-large-image,page-template-blog-large-image-php,page,page-id-571,ajax_fade,page_not_loaded,,qode_grid_1300,qode-child-theme-ver-1.0.0,qode-theme-ver-10.1.1,wpb-js-composer js-comp-ver-5.0.1,vc_responsive

Blog

New software releases, updates and general news in the security space get updated in our blog.

 

At Soffid we are pleased to announce that version 1.8 of the Soffid Console and Soffid Sync server have been released. In this version we include several new features that we are sure will enhance both the user experience and performance of the Soffid software...

Issued on: February 15th Publicly available on: June 1st Abstract: A security flaw has been detected on Soffid IAM Console version 1.7.4. A malformed authentication request could lead to arbitrary code execution. No credentials nor authorization is required to exploit this vulnerability Details Soffid IAM console lets users authenticate using username...

Date: February 2017 Security risk   Soffid engineering team has found a severe vulnerability in Soffid console component. An attacker would be able to execute arbitrary code by injecting a malformed identification token. A Soffid console upgrade has been released to address this security flaw. To protect our...

Soffid ESSO, as any other enterprise single sign on, needs to store the password in a way that can be used by applications, and this requirement implies that password should be stored in either clear text or reversible encryption algorithms, making them vulnerable to insider...

After five months of hard work, the new 1.6 version is ready to be tested. It contains a bunch of new and relevant features, improving both identity governance and technical features. New identity governance features  Improved reporting addon  Improved accounts usage audit log  Added Active Directory...

Google Apps is one of the most popular service providers for business of any size, but the tools provided by Google to manage user accounts and groups don't give system administrators the flexibility and capabilities a specialized identity management product can offer.  With Soffid, you can...

With Soffid, you can manage four types of accounts: Unmanaged accounts. Theese accounts will be ignored by Soffid synchronization engine. Their primary goal is to allow a smooth transition without having to bother about some accounts until later. Single user accounts. Theese acounts belong to...

Password stress is a common problem on small and big copmanies. The advent of cloud applications has increased the number of user names and passwords that an average user has to manage. Soffid provides a complete single sign on mechanism, able to get rid authentication dialogs in a easy, efficient and secure fashion.

To secure mobile device access is an important challenge, due to potential security risks that a device lost represents. Soffid can reduce security risks while improving user experience using digital certificates. The advantages that a digital certificate represents are clear from technical and functional point of view.