Teleport 10 enables single sign-on to any infrastructure resource without password or username


Teleport has released Teleport 10, the latest version of its Teleport Access Plane offering. Teleport 10 offers passwordless access, a single sign-on infrastructure access solution that eliminates the need for usernames, passwords, private keys and other secrets.

Integrating secure biometric solutions such as TouchID, Windows Hello, Yubikey BIO and other biometric hardware, Teleport 10 provides scalable identity-based access while reducing the likelihood of information loss, sharing or theft. identification. Teleport Passwordless Access is based on the Fast Identity Online (FIDO) Alliance WebAuthn standard of biometric solutions and provides not only security but also user experience.

Teleport recently joined the Alliance and this product release aims to extend FIDO’s mission to make passwordless biometric authentication the standard across all facilities.

According to the Verizon Business 2022 Data Breach Investigations Report, the most common causes of data breaches are attributed to human error, such as stolen, lost, or misconfigured passwords. By replacing secrets such as passwords and keys with biometric data that cannot be duplicated, lost, stolen or sold, Teleport 10 eliminates the likelihood of stolen credentials being used in an attack.

“Stolen credentials are the number one cause of data breaches. Once malicious actors gain access to an organization’s infrastructure, they can then pivot within the system and gain access to as much sensitive information as possible,” said Alan Goode, CEO and Chief Analyst at Goode Intelligence. . “Teleport 10 disrupts this common model with biometric identity-based access management that supports FIDO authentication standards – a first for infrastructure settings. Any business can directly benefit from this transition to a new access paradigm.

“Identity isn’t something you own like a password or key, it’s what you are. Passwords, usernames, private keys, and even browser cookies can be copied, lost or stolen. This is not the case with biometrics read using specialized hardware. These cannot be copied and downloaded anywhere,” said Ev Kontsevoy, CEO and Co-Founder of Teleport “Increasingly, enterprises are realizing the need for an access management solution that doesn’t rely on secrets. Teleport 10 represents the start of an industry-wide evolution towards biometric-based access, which establishes an inalienable identity for each engineer within a company’s infrastructure.

Simplified Access — No Secrets

Teleport 10 enables single sign-on to any infrastructure resource without passwords, usernames, or other digital secrets like SSH keys. By authenticating with a physical attribute such as a fingerprint, users can access protected resources such as Linux or Windows servers, databases, Kubernetes clusters, and internal private applications. Biometric attributes read using specialized hardware create a unique identity that cannot be shared, lost or stolen.

In addition to passwordless access, Teleport 10 includes several key new features:

  • Just-in-time access requests: Due to the risks associated with credential misuse, organizations are moving towards a permanent zero-privilege model that users do not have access to by default. However, this can complicate the process of obtaining access when needed. New in Teleport 10, just-in-time resource access requests allow an engineer to request access to one or more individual resources when needed and have the request automatically approved based on policy or via modern tools like Slack or Jira, making it possible to implement permanent zero privileges without impacting productivity.
  • Other use cases for Machine ID: Teleport Machine ID provides identity-based access and auditing for engineers and the applications they write. By consolidating credentials, Teleport reduces the risk of compromised infrastructure being used in an attack. By extending Machine ID support for Kubernetes clusters and databases, Teleport 10 protects resources from unauthorized access by microservices and other applications that may have been compromised.
  • Additional supported databases: Teleport 10 adds support for five additional databases to the already long list of supported offerings: Snowflake, Elasticsearch, Cassandra, Amazon Elasticache, and Amazon MemoryDB. Now customers can protect access to their critical data stores and monitor access, including queries run and by whom.

A popular database used by Teleport customers is CockroachDB. Cockroach Labs had this to say about Teleport: “By integrating Teleport with CockroachDB and leveraging their Zero Trust model to manage database access, DBAs are able to scale their environments without decreasing the security,” said Jeff Miller, chief revenue officer at Cockroach Labs. “With Teleport 10’s new passwordless access feature, a customer’s security posture can be further improved by reducing reliance on usernames and passwords.”

  • Worldwide deployments: As Teleport protects more engineers and applications, customers can achieve unprecedented scale with their Teleport deployment. Teleport Proxy Peering enables customers to reduce network congestion and latency for large-scale teleport deployments of over 15,000 nodes, so engineering teams can securely access global resources without impacting productivity.

Source link


Comments are closed.