Microsoft has unveiled a new range of products aimed at bolstering its Entra identity and access management (IAM) line to counter the growing threat landscape. According to Joy Chik, the President of Identity at Microsoft, there has been a significant increase in the number of password attacks, with more than 4,000 passwords being attacked every second. This represents a 2.5 times increase compared to the previous year. In light of these alarming statistics, Microsoft is pushing for stronger security measures to protect secure access.
The highlight of this product release is the introduction of Entra Internet Access and Entra Private Access in public preview. Entra Internet Access is a zero-trust network access (ZTNA) service that prioritizes identity-centric security and integrates seamlessly with Microsoft’s Conditional Access intelligent policy engine. On the other hand, Entra Private Access controls access to business assets and applications based on network conditions and situational needs. Both these products mark Microsoft’s foray into the secure service edge (SSE) product category.
Entra Private Access enables users to securely access private apps and resources from any network. This means that users can access their applications and sensitive data securely, regardless of their location, be it at home or a café. If any suspicious activity is detected while attempting to access resources, Entra Internet Access can employ two-factor authentication, limit resource access, or even block the user entirely. It also integrates with Microsoft 365 apps and extends Conditional Access policies to network conditions.
In essence, Entra Private Access enables users to access company resources securely through a secure web gateway, while Entra Internet Access ensures the security of the network access itself. This eliminates the need for a VPN-type perimeter and provides a more seamless and secure access experience.
Apart from these new offerings, Microsoft has also made significant updates to its existing Entra product lineup. Entra ID Governance, now generally available, offers enhanced features such as life cycle management workflow and entitlement management. Entra Verified ID, also generally available, allows users to add confirmed information to a digital wallet, facilitating employment verification on LinkedIn or showcasing career certifications to their employers. Meanwhile, Entra Workload ID verifies the identities of non-human users, such as programs and bots, enabling centralized control of access privileges.
Microsoft has also introduced Entra External Identity, now in public preview, which extends the security of Entra identity access to external users such as customers, guests, and business partners. It brings customer identity and access management (CIAM) capabilities to the Entra platform, allowing businesses to securely manage access for their B2B customers.
To enhance the effectiveness of these products, Microsoft has incorporated artificial intelligence (AI) and machine learning (ML) capabilities. Entra ID leverages the data collected by Entra Internet Access and Entra Private Access to identify patterns of typical user behavior and flag any suspicious activities. When anomalies are detected, Entra ID can either raise an alarm or block user access altogether. Additionally, AI/ML is employed in workflow automation to streamline employee onboarding, offboarding, and access management processes.
These updates come at a time when securing access to sensitive data and resources has become critical due to the increasing frequency and sophistication of cyberattacks. By expanding their Entra IAM line into the SSE, Microsoft aims to provide organizations with robust security solutions that protect against evolving threats. With the incorporation of AI/ML technologies, Microsoft is streamlining identity and access management processes and enhancing the overall security posture for businesses.