Cloud Security Perspectives and Insights

Open and Standards based Application Integration using IDCS

This is the third of a four-part series of blogs that started with an overview of Identity Cloud Service and is now focused on providing more insights into each of the key pillars upon which IDCS is designed – Hybrid Identity, Open & Standards based, and Secure Defense in Depth. 

Last week, I wrote about Hybrid Identity and how enterprises can benefit from User Synchronization, Access Federation and Governance for cloud applications. 

Today let’s talk about Open and Standards-based Integrations. Oracle has championed open standards for a long time and has been involved in authoring various specifications for SAML, SCIM, OAuth and OpenID Connect. Oracle Identity Cloud Service will support these open standards to integrate not only with Oracle’s suite of applications but also 3rd party SaaS applications. Support for SCIM will enable enterprises to access and manage the cloud identity store using standard SCIM interfaces to add, update or remove users and groups. Prateek Mishra, Architect for IDCS, wrote a great blog earlier this week highlighting the importance of these standards to work closely together to solve identity management use cases for cloud applications. 

An example of Oracle’s leadership in standards work is the OpenID FastFed Working Group whose purpose is to simplify application integrations with Identity Management products by making the SAML and SCIM standards work closely together. 

In addition to supporting open standards, Oracle is also committed to an API-first development approach for IDCS. That means that APIs exist for ALL product capabilities so that enterprises can choose to integrate functionality into their custom applications if they need to. The IDCS Management UI itself is a reference implementation of open APIs. As we continue to build more features going forward, we’ll honor this API-first development approach and make sure that every new feature added comes along with equivalent APIs. 

Adherence to open standards and having 100% product coverage for APIs accelerates the enterprise app development process since developers do not need to acquaint themselves with proprietary APIs. This also lowers costs of maintaining applications since it is much easier to find developers who are familiar with open protocols rather than proprietary vendor APIs. 

Next week I will write about how IDCS provides security with defense in depth for identities stored in the cloud. In the meantime, you can find more information about the product here:

Make sure you take a moment to register for the upcoming Launch Webcast on Oracle's Identity Cloud Service.  This will be an excellent opportunity for you to hear from Oracle's security leadership as they outline the cloud security strategy that Oracle is investing in, with the new Oracle Identity Cloud Service.  In addition, make sure you take a moment to follow us on Twitter and Facebook to stay on top of the latest news for Oracle's Cloud Security initiatives, and the latest from Oracle OpenWorld 2016

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.