The Non-Human Identity Management Group launched a Poll on LinkedIn asking should Non-Human Identity Products and Human Identity Products be kept Separate or Converge?
- This was a huge poll with close to 330 security practitioners voting across 200 organisations
- Keeping Non-Human Identity Products Separate from Human Identity Products seemed to win the day – 55% to 45%
- A lot of passionate views on both sides based on the voting and the amazing set of comments For and Against
- Overall whilst it was a very close vote, I think the reality is that some of the folks who voted Converge, want this to be an ideal end state view, but clearly see there is a valid case for keeping the focus on NHI Risks Separate for now
- The Challenges and Approach to Addressing Non-Human Identity risks vs Human Identity risks are very different e.g. hardcoded passwords in source-code and how you go about fixing these risks, so these clearly need more vertically focussed solutions to help address
