For more than 10 years now, Ping has had a grand vision for identity. A vision to enable a world where one’s identity was secure, yet usable anywhere it was needed throughout the Internet with the appropriate controls.
Over the years, we’ve envisioned the creation of identity networks. We’ve made comparisons to the financial networks like VISA and PLUS. We’ve talked about how identity needs to become similar to dial-tone, ubiquitously accessible and ‘always-on’ and we’ve relentlessly pursued, pushed and promoted open standards as the enabler of loosely coupling today’s identity infrastructure to achieve Internet scale distributed computing.
Each step of the way, we’ve been patient. We came to appreciate how our vision was ahead of the market, and so we dove into solving the problems of the day, knowing that over time, we would earn a seat at the table of the larger market opportunity.
This early thinking led us to build what is today the world's leading federation and cloud identity server -- PingFederate. Trusted and deployed by more enterprises and service providers than any other commercial product, PingFederate has become the gold standard. It defines how companies enable their existing identity infrastructure for open standards and connect their users and their applications to the cloud.
The next problem to solve
But for every solution we simply enable the next problem.
In our case, it was scale. It was one thing when companies were connecting to a few, if not a few dozen partners, and quite another when they wished to connect to hundreds, if not thousands of partners, suppliers, customers and consumers.
Would every identity connection need to be manually configured? Would trust (e.g. PKI) always need to be direct? How could we move beyond the 1:1 mapping of identity federation into something more scalable, more dynamic and more real-time, without giving up security?
The truth is, there are several ways in which the problem of identity federation at scale can and will be achieved in the years to come. The networking of identity such that we’re able to connect and secure transactions as they go from anything to everything will require many different approaches. There is no one “right way” to do it. Each approach has merit, depending on the use-case, financial, security, trust and control considerations.
The next generation of federation
So today, we would like to announce the next big thing from Ping. It’s something we’ve dreamed about doing since the day we were created 10 years ago.
Today, we present PingOne, our new on-demand identity cloud service for Tier 1 Cloud Single Sign-On and Identity Management.
PingOne is the beginning of something really big for us, for our customers, and Cloud computing. We believe PingOne will fundamentally change the way companies connect their users and applications together in the cloud. At it’s core, PingOne changes the connection model of federation from 1:1 to 1:Many, pushing the cost, complexity and manual labor to Ping – and freeing enterprises and service providers to focus on what they do best.
In keeping with our values as a company, and unlike the several on-demand services that give lip service to standards while they solve the Cloud single sign-on (SSO) problem via password vaulting, PingOne takes a hard stand on open standards.
As a Tier 1 (exclusively open standards) Cloud SSO and identity management provider, every use-case we enable, we do with open industry standards. We do not compromise on this – it’s core to our principles.
We believe in the freedom of choice. We believe in loosely coupled systems, and we believe customers should not be locked into a proprietary solution in a silo. By enabling cloud security, identity management and SSO using open standards, we put our customers first.
The new identity architecture for the cloud
But we couldn’t become the worlds first identity switch without solving both sides of the connection problem, which is why, we’re pleased to announce that PingOne has services for both identity providers (e.g. companies) as well as application providers (e.g. SaaS vendors and service providers). Leveraging PingOne, it’s now possible to make a single, multiplexed connection to our new cloud service and have that single connection attach you to multiple parties on the other side. Like a switch, a single connection enables a 1:Many relationship. It’s all done in the cloud, 100% on-demand, 100% standards and 100% self-service.
So if you’re an existing PingFederate customer, you may be asking yourself how this impacts you, what you can do now that you couldn’t before, and what our roadmap is for these technologies?
To answer that question, let me first say that we’ve designed PingFederate and PingOne to be ‘better together.’ Complementary in nature, and functioning independently or together based on your requirements. Furthermore, we’re building the PingOne Cloud service into PingFederate, like the integration of iTunes and the iPod, such that integration is seamless.
You’ll be relieved to know that while today we’re announcing PingOne, we’ve never been more committed to PingFederate and the role it plays at the edge of the enterprise in connecting legacy systems to the cloud using open standards.
For PingOne, it’s optimized to solve select and important federation use-cases, namely, workforce to cloud. Most if not all of our large enterprise customers have multiple use-cases which include B2B interactions, consumer interactions, internal federation and partner integration, all of which are solved with PingFederate, and not with PingOne.
Think of PingOne and PingFederate, together, as a hybrid solution to the private and public cloud connectivity challenge. Together, they make up the whole solution.
What an exciting year. Let’s tackle it together. Onward.
More on PingOne: