Introduction
Monokee is a technology enabler that integrates Identity and Access Management (IAM) with disruptive and decentralized technologies to provide enterprise-grade security and compliance. At its core, Monokee is an IAM framework suitable for enterprise ecosystems of all sizes, from Small and Medium Enterprises (SMEs) to large corporations, by providing Single Sign-On (SSO) with Multi-Factor Authentication (MFA) among many other identity-related functionalities. Monokee works natively in a heterogeneous business ecosystem, including industrial, banking, and healthcare customers. The proprietary visual engine enables systems administrators to implement integrated governance policies for classic IAM scopes and domain or business-specific scenarios. With the integration of MFA and dynamic risk and trust assessment, Monokee's Continuous Adaptive Trust (CAT) reduces the enterprise attack surface, thus minimizing the overall risk of identity theft and unauthorized access. The next-gen technology in user journey orchestration enables the extraction of security claims that can be used for compliance and risk analysis purposes. With our trusted partners, Monokee includes the support for Know Your Customers (KYC) and Anti Money Laundering (AML) technologies. The future, however, is decentralized. Monokee fully embraces the new Self-Sovereign Identity (SSI) paradigm with native support for distributed technologies and direct integration of Verifiable Credentials (VC) in the SSO user journeys. With the decentralized identities integration, enterprises can offload the identity aspects of the authentication and authorization flows, further reducing the overall responsibilities and delegating to third-party trusted issuers the risks associated with user identities. Monokee is built with a robust cybersecurity driver in terms of infrastructure regulatory requirements:
- the microservices-based architecture guarantees isolation and reliability provided that each virtualized container ensures limited external access both at rest and while running;
- strong authentication and authorization mechanisms are enforced inter-components to ensure data protection and prevent known threats;
- regular code review processes and anti-malware controls are in place to minimize the risk associated with cyber threats and vulnerability exploits. Monokee's introduction has immediate OPEX savings on the:
- management costs associated with classic IAM KPI, such as the integration of SSO;
- drastic decrease in help desk costs and ad-hoc technical training for all the integrated services;
- simplification of identity-related procedures, such as password changes and multiple entities interaction. There are also notable indirect and long-term OPEX savings associated with the reduced risk of security breaches and compliance with current regulatory requirements (e.g., GDPR fines are in the order of 4% global turnover or 20 million EUR).