Twitter
youtube
Discord
Contact us
Forums
New posts
Trending
Rules
Explore
Bioenergetic Wiki
Bioenergetic Life Search
Bioprovement Peat Search
Ray Peat Interviews by Danny Roddy
Master List: Ray Peat, PhD Interviews & Quotes by FPS
Traveling Resources
Google Flights
Wiki Voyage
DeepL Translator
Niche
Numbeo
Merch
Log in
Register
What's new
Search
Search
Search engine:
Threadloom Search
XenForo Search
Search titles only
By:
New posts
Trending
Menu
Log in
Register
Navigation
Install the app
Install
More options
Light/Dark Mode
Contact us
Close Menu
Information
World News
Launch HN: Idemeum (YC S21) – Passwordless access to apps and infrastructure
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Hacker News" data-source="post: 72997" data-attributes="member: 365"><p>Nik and Jagjit here, founders of Idemeum (<a href="https://www.idemeum.com/" target="_blank">https://www.idemeum.com/</a>). We are excited to share our product with HN!</p><p>Idemeum is a SaaS platform that offers a single place to manage access to applications and infrastructure. We let businesses eliminate passwords for everything employees access: devices, applications, servers, and networks. Our cloud platform eliminates VPNs and allows access to applications and infrastructure from anywhere with a single click.</p><p>In industry terms, we combine Privileged Access Management (PAM), Identity and Access Management (IAM), and passwordless technologies.</p><p>In simpler terms: you install our mobile application, navigate to your SaaS idemeum tenant, scan a QR-code, and login with biometrics. Once you are in, you can access anything with a single click - SAML Single Sign-On apps, hosted on-premises apps, password apps, SSH servers, and more. There’s a quick overview here: [MEDIA=youtube]-3StOlDjMrQ[/MEDIA]</p><p>We spent more than a decade in identity access management and threat detection at VMware, Facebook, and Cisco, building platforms to manage user access. That experience left us excited about two things: (1) kill passwords; (2) make things simple.</p><p>We started our company with the mission to eliminate passwords in the workplace. That’s important—80% of breaches involve passwords—but our vision gradually evolved into an all-in-one platform to manage employee access.</p><p>First we built Passwordless MFA, a mobile app that replaces passwords with biometrics and certificates. You can login into any company resource - SSO portal, Windows or Mac desktop, Wi-Fi, VPN - with a simple Face ID scan. But behind the scenes we use a lot of technology to make our MFA unphishable and secure (FIDO2, hardware-backed crypto, device attestation, and more).</p><p>Second, we added a full-featured Single Sign-On Identity Provider. It is a web and mobile portal to centralize access to all apps and infrastructure. Unlike other Identity Providers that focus only on SAML SaaS applications, we added all resources to the same portal, so you can access apps, servers, databases and more from the same place. Today we support hundreds of SAML integrations, offer account provisioning, RBAC, auditing, group management and more.</p><p>Next, we added a password vault. Companies asked us to add a password management capability to safely store credentials, share amongst employees, and autofill on websites. But unlike other password managers, we do not use a master password. Instead you login into your vault (on desktop or mobile) with mobile biometrics such as Face ID. The vault is end to end encrypted, and your passwords can not be seen in our cloud.</p><p>Last but not least, we realized that SSO for cloud applications is solving only part of the problem, as engineers need to access hosted apps and compute infrastructure. As a result we added a cloud proxy to our platform to offer remote access to on-premises applications and SSH servers. Not only do we provide connectivity, but also handle authentication, authorization and auditing for infrastructure access. For example, we replace SSH passwords and keys with short-lived certificates. We will release RDP access shortly, and will then start adding database access to our platform.</p><p>Security is critical for us - we have been prioritizing security from day one. We are open with how our system is architected, and published all designs on our docs portal (<a href="https://docs.idemeum.com/mobile-app-security.html" target="_blank">https://docs.idemeum.com/mobile-app-security.html</a>). We also conducted our first penetration test with Cure53 to validate our designs, crypto, and security principles. We are also SOC2 compliant.</p><p>We offer a free plan and would love your feedback if you give us a try: <a href="https://idemeum.com/try" target="_blank">https://idemeum.com/try</a>.</p><p>We would be very grateful to hear your feedback, ideas, and experiences from the identity and access management domain. Thank you!</p><p></p><hr /><p></p><p>Comments URL: <a href="https://news.ycombinator.com/item?id=33346183" target="_blank">https://news.ycombinator.com/item?id=33346183</a></p><p></p><p>Points: 26</p><p></p><p># Comments: 0</p><p></p><p><a href="https://news.ycombinator.com/item?id=33346183" target="_blank">Continue reading...</a></p></blockquote><p></p>
[QUOTE="Hacker News, post: 72997, member: 365"] Nik and Jagjit here, founders of Idemeum ([URL]https://www.idemeum.com/[/URL]). We are excited to share our product with HN! Idemeum is a SaaS platform that offers a single place to manage access to applications and infrastructure. We let businesses eliminate passwords for everything employees access: devices, applications, servers, and networks. Our cloud platform eliminates VPNs and allows access to applications and infrastructure from anywhere with a single click. In industry terms, we combine Privileged Access Management (PAM), Identity and Access Management (IAM), and passwordless technologies. In simpler terms: you install our mobile application, navigate to your SaaS idemeum tenant, scan a QR-code, and login with biometrics. Once you are in, you can access anything with a single click - SAML Single Sign-On apps, hosted on-premises apps, password apps, SSH servers, and more. There’s a quick overview here: [MEDIA=youtube]-3StOlDjMrQ[/MEDIA] We spent more than a decade in identity access management and threat detection at VMware, Facebook, and Cisco, building platforms to manage user access. That experience left us excited about two things: (1) kill passwords; (2) make things simple. We started our company with the mission to eliminate passwords in the workplace. That’s important—80% of breaches involve passwords—but our vision gradually evolved into an all-in-one platform to manage employee access. First we built Passwordless MFA, a mobile app that replaces passwords with biometrics and certificates. You can login into any company resource - SSO portal, Windows or Mac desktop, Wi-Fi, VPN - with a simple Face ID scan. But behind the scenes we use a lot of technology to make our MFA unphishable and secure (FIDO2, hardware-backed crypto, device attestation, and more). Second, we added a full-featured Single Sign-On Identity Provider. It is a web and mobile portal to centralize access to all apps and infrastructure. Unlike other Identity Providers that focus only on SAML SaaS applications, we added all resources to the same portal, so you can access apps, servers, databases and more from the same place. Today we support hundreds of SAML integrations, offer account provisioning, RBAC, auditing, group management and more. Next, we added a password vault. Companies asked us to add a password management capability to safely store credentials, share amongst employees, and autofill on websites. But unlike other password managers, we do not use a master password. Instead you login into your vault (on desktop or mobile) with mobile biometrics such as Face ID. The vault is end to end encrypted, and your passwords can not be seen in our cloud. Last but not least, we realized that SSO for cloud applications is solving only part of the problem, as engineers need to access hosted apps and compute infrastructure. As a result we added a cloud proxy to our platform to offer remote access to on-premises applications and SSH servers. Not only do we provide connectivity, but also handle authentication, authorization and auditing for infrastructure access. For example, we replace SSH passwords and keys with short-lived certificates. We will release RDP access shortly, and will then start adding database access to our platform. Security is critical for us - we have been prioritizing security from day one. We are open with how our system is architected, and published all designs on our docs portal ([URL]https://docs.idemeum.com/mobile-app-security.html[/URL]). We also conducted our first penetration test with Cure53 to validate our designs, crypto, and security principles. We are also SOC2 compliant. We offer a free plan and would love your feedback if you give us a try: [URL]https://idemeum.com/try[/URL]. We would be very grateful to hear your feedback, ideas, and experiences from the identity and access management domain. Thank you! [HR][/HR] Comments URL: [URL]https://news.ycombinator.com/item?id=33346183[/URL] Points: 26 # Comments: 0 [url="https://news.ycombinator.com/item?id=33346183"]Continue reading...[/url] [/QUOTE]
Loading…
Insert quotes…
Verification
Post reply
Information
World News
Launch HN: Idemeum (YC S21) – Passwordless access to apps and infrastructure
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.
Accept
Learn more…
Top
