As the developers noted, the new security service will protect the company's credentials and employee accounts from leaks and hacking. The solution operates on a SaaS model and can be used in organizations with different types of infrastructures: on-premises (on its own infrastructure), cloud and hybrid.
Evgeny Sidorov, Director of Information Security at Yandex Cloud, said:
Attacks on hybrid infrastructures are becoming successful due to poor management of user passwords, accounts, and access to corporate services. In response to this threat, we developed Yandex Identity Hub. Like many other company services, it was developed by a team of security engineers with extensive experience in protecting Yandex's corporate resources. Delegating user authentication to a cloud provider will allow companies to reduce the cost of operating IT systems related to managing access to corporate applications.
The Yandex Identity Hub service was presented on June 19 at Cloud Security Day — an annual conference dedicated to security in the cloud. An update to the Yandex Smart Web Security service for protection against DDoS attacks was also announced at the conference. Now it connects in front of the customer's infrastructure as a Reverse Proxy. This allows you to protect resources in hybrid infrastructures and outside the Yandex Cloud perimeter.