It is also predicted that by 2022, 40 per cent of global midsize and larger organizations will use SaaS-delivered identity and access management (IAM) to fulfil most of their needs
Gartner, Inc. has predicted that by 2022, 70 per cent of organizations using biometric authentication for workforce access will implement it via smartphone apps, regardless of the endpoint device being used.
Last year (2018), this figure was fewer than 5 per cent.
Lower costs and improved user experience/customer experience (UX/CX) are fuelling this increasing interest in biometric authentication.
“Security and risk management leaders responsible for identity and access management (IAM) and fraud prevention continue to seek approaches for identity corroboration that balance trust and accountability against total cost of ownership and UX/CX,” said Ant Allan, research vice president at Gartner.
He explained, “Biometric authentication uses biological or behavioural traits unique to each person and offers better UX/CX and accountability than other common methods. Implementing this via smartphone apps provides more consistency in UX/CX and is technically simpler than supporting it directly on a variety of different endpoint devices.”
Midsize and large organizations looking to implement biometric authentication via smartphone apps are cautioned that biometric approaches that can be readily supported on any smartphone are vulnerable to presentation attacks or “spoofing” using photos, videos, voice recordings, and so on.
Therefore, the research firm noted that presentation attack detection or “liveness testing” is essential.
SaaS-Delivered IAM promises to fulfill most needs
Gartner projected that, by 2022, 40 per cent of global midsize and larger organizations will use IAM capabilities delivered as software as a service (SaaS) to fulfil most of their needs — up from 5 per cent in 2018.
SaaS-delivered IAM is often deployed to enhance access management software implementations. The ease of implementation and rapid time to value of SaaS-delivered IAM offerings have proved valuable to organizations that favour SaaS adoption and do not consider the operational management of IAM functionality core to their business.
“Based on our client interactions, most SaaS-delivered IAM purchases are for access management and lightweight identity governance and administration functionality, such as single sign-on. These offerings provide excellent connectivity and include solid access management and password management features. B2B and B2C are the most established use cases with matured access management capabilities,” said Abhyuday Data, associate research principal analyst at Gartner.
Factors accelerating adoption of SaaS-delivered IAM
The steady movement of applications to cloud and mobile architectures is influencing adoption. The combination of functional offerings that are configured, rather than customized, and modern application architectures is causing a substantial portion of the market to adopt SaaS-delivered IAM.
Abhyuday Data suggested that organizations looking to use SaaS-delivered IAM should first ensure that they have established satisfactory and well-supported traditional IAM software stacks.
They then need to consider SaaS-delivered IAM once functional needs are met and the organizational benefits are realized, he said.