EMC Corp. has acquired Waltham, Massachusetts-based Aveksa, an identity- and access-management company, to integrate it with its security subsidiary RSA. The companies did not disclose terms of the transaction.
Authentication, authorization and identity management are becoming increasingly intertwined in today's cloud-based, application-centric world, EMC explained. Aveksa will help RSA automate the management of a user's identity throughout the user's life cycle.
Aveksa has a unified dashboard for managing, controlling and providing access to users, enforcing identity and access policies across the enterprise and the infrastructure the company has deployed in the cloud. Its solution spans multiple heterogeneous IT systems for both on-premise infrastructure and public-cloud services.
EMC said Aveksa's products complemented its authentication, access-management and federation solutions.
Art Coviello, executive chairman and executive VP at EMC, said adoption of cloud-based IT and use of mobile devices meant security organizations were being asked to secure and manage access for assets they did not usually owned or managed.
“Without the deep intelligence able to provide insight into what users should and should not have access to, traditional tools that simply automate IAM leave organizations exposed to the risk of excessive privilege, data breaches and regulatory non-compliance,” he said. “Together, RSA and Aveksa see tremendous opportunity to help our customers overcome these IAM challenges.”
Aveksa's technology allows customers to build “situational perimeters” for users. The concept of perimeters enables security organizations to enforce security flexibly whenever and wherever users interact wit corporate data and resources.
Access decisions are made within the controls, processes and policies defined by the information-security organization.
Aveksa will operate as part of RSA's Identity Trust Management product group, according to EMC.