Are you ready to bring more awareness to your brand? Consider becoming a sponsor for The AI Impact Tour. Learn more about opportunities here.
Generative AI defines the future of identity access management (I AM) improving extreme behavior analysis, increasing alert accuracy and streamlining administrative tasks while protecting against new threats.
The majority (98%) of security professionals believe that artificial intelligence and machine learning (ML) will be beneficial in combating identity-based breaches and see it as a key technology to unify their many identity frameworks. More than half (63%) predict that the main use case for artificial intelligence will be greater accuracy in detecting extreme behavior. Another 56% believe AI will help improve alert accuracy and 52% believe AI will help streamline administrative tasks.
The Identity Security Alliance’s recent report, 2023 Trends in Securing Digital Identities, also shows how security professionals are required to acquire different identity frameworks from multiple vendors and different architectures to provide consistent data and information.
Generative AI shrinks attack surfaces and expands the market
Insider threats and zombie credentials are two of the most difficult attack surfaces to detect and terminate an intrusion or breach attempt. Expect to see leading IAM providers adopt gen AI to create auto-deployed decoys, incremental improvements in behavioral detection and response, gains in Asset Graph technology, and fast-tracking improvements to their Extensible Detection and Response (XDR) platforms.
Every IAM provider has gen AI on its roadmap and is moving quickly to offer new products that leverage its ability to provide contextual intelligence. Leading IAM providers include; AWS, Crowdstrickety, Delinea, Eric, ForgeRock, ivandi, Google Cloud Identity, IBM Cloud Identity, Microsoft Azure Active DirectoryPalo Alto Networks and Zscaler.
The more successful the generation’s AI is in shrinking attack surfaces, the more its net effect will be to expand the market. Gartner forecasts that the global IAM market will grow from $16.1 billion in 2023 to $24.9 billion in 2027. Broader end-user spending on the global information security and risk management market will grow to $186 billion in 2023; with constant currency growth of 13.4%. The market will reach $289 billion in 2027, with a CAGR of 11.0% between 2022 and 2027.
Gen AI shows the potential to close the gaps in cloud security, the fastest-growing information security and risk management market tracked by Gartner. Cloud security products and services are forecast to grow from $4.4 billion in 2022 to $12.8 billion in 2027, achieving a compound annual growth rate (CAGR) of 23.5%.
Application security is forecast to grow from $5.7 billion in revenue this year to $9.6 billion in 2027, achieving a CAGR of 13.6%. Global spending on zero-trust security software and solutions will grow from $27.4 billion in 2022 to $60.7 billion by 2027achieving a CAGR of 17.3%.
Strengthen AI production efforts in IAM
IAM providers must step up their efforts using Gen AI to detect and defeat the growing number of non-malware attacks, which are often combined with persuasive social engineering tactics. Attackers using Gen AI to create, launch and monitor malware-free attacks accounted for 71% of all detections as recorded in the index CrowdStrike threat graph.
The last Falcon Overwatch Threat Hunting Report shows how attack strategies target identities first.
“A key finding from the report was that over 60% of interactive attacks observed by OverWatch involved the use of valid credentials, which continue to be used by adversaries to facilitate initial access and lateral movement,” said Param Singh, Vice President of Falcon OverWatch. on CrowdStrike.
“Identity is where security is going, and it’s going to revolve around the future because there’s much richer data there,” Ariel Tseitlin, partner at Scale Venture Partnershe told VentureBeat earlier this year. I AM rose from eighth to second place in this year’s ranking of investment priorities, reflecting growing market concerns about identity security in multicloud technology stacks.
In a recent series of interviews, IAM providers and serving CISOs told VentureBeat what they’re most interested in is seeing how next-generation AI can help fill the gaps their organizations face in making security a priority. ID card. IAM providers are trying to bridge the gaps between identity and endpoint security, relying on artificial intelligence and training models to bridge that gap with more contextual intelligence.
![](https://venturebeat.com/wp-content/uploads/2023/11/image1-2.png?resize=747%2C642&strip=all)
Where IAM Product Leaders Focus Artificial Intelligence
CISOs have consistently told VentureBeat that stopping an insider threat worries them and their teams the most. Employees with legitimate identities — some with access credentials and a few with administrative rights — are trusted and move freely around the infrastructure to do their jobs.
Monitoring network activities and identities will not detect a breach using stolen credentials or an insider attack. In addition, attackers often know the networks they attack better than the administrators who run them, and the threat becomes even more serious.
VentureBeat spoke with the product leaders responsible for the next generation of IAM systems to get their thoughts on solving this issue, and here are their observations.
Real-time checking of all access credentials to verify access rights per resource
DropBox, Box and Microsoft Sharepoint have years of intellectual property, customer records and transaction information exposed because credentials have never been audited or revoked. Product leaders at all IAM providers say they see this frequently in their customers’ networks and that breaches are common. No system catches them because legitimate credentials were used.
Almost half (45%) of businesses suspect that former employees and contractors still have active access to company systems and records, according to a recent study by Ivanti.
During an interview with VentureBeat, Srinivas Mukkamala, Ivanti CPO, said that “large organizations often fail to account for the vast ecosystem of third-party applications, platforms and services that provide access long after an employee has been fired.”
Mukkamala continued: “A shockingly large number of security professionals – even senior executives – still have access to former employers’ systems and data.”
Behavioral analysis for anomaly detection and response
Every IAM provider has their anomaly detection solution currently available or in their second generation to enhance it with the AI generation. It’s a powerful use case for the technology, as it can detect unusual access patterns or potential breaches by analyzing large data sets in real-time, greatly improving detection.
IAM product leaders say their roadmaps reflect the expanding use of next-generation AI-based behavioral analytics for fraud detection, endpoint security, server and data center monitoring, and more. Top providers include CrowdStrike, CyberArk, Ivanti, Microsoft, Thales, Ping Identity and others.
Identify, isolate and stop insider threats
Every IAM provider VentureBeat spoke with already has an internal threat solution available or on their roadmap. Their goal is to use Gen AI to fast-track threat solutions from insider intelligence to increase the accuracy and reliability of alerts while sending containers, shares, and assets that an attacker would try to breach.
IAM product managers often visit their customers and spend a day in their Security Operations Centers (SOCs) to see how their alerting workflows can be improved, especially on insider threats.
According to a leading provider, it is a very effective technique and they produce what they have learned. Given this high priority for the IAM provider community, it is reasonable to assume that there will be acquisitions in this area in 2024. For example, in 2022, CrowdStrike has acquired Reposify to enhance their Falcon external attack surface management platform, announcing that the core technology will also help their customers stop insider attacks.
VentureBeat’s mission is set to be a digital town square for technical decision makers to learn about transformative business technology and transact. Discover our Updates.