Solutions
-
Background
With the continuous development of business as well as information technology in the transportation industry, there are more and more application systems, platform capabilities are gradually enriched, and the interaction between various application systems , and between application systems and the basic platform becomes more frequent. Therefore, an integration platform is urgently needed to realize efficient interconnection of internal and external systems through various integration methods such as messages, services and data.
-
Value
With the rise of mobile office and cloud, the physical boundary has disappeared, and employees, suppliers, contractors, partners and customers distributed all over the world can access internal or cloud applications through diversified devices. Enterprises need to establish a new security strategy with "identity" as the boundary. "Identity" is the foundation of everything, and "identity security management" is the cornerstone of digital transformation. -
Solution
Bamboocloud IAM platform realizes One-ID unified identity for users; provides One-ID login for dozens of applications to open up information silos; and realizes SSO for single sign-on to simplify the login process; at the same time, it can automatically assign IDs to users according to their positions and roles, etc., providing intelligent control of permissions.
-
Cases
China Railway, Shenzhen Metro, Shenzhen Airport, Shenzhen Bus and Wuxi Metro joined hands with Bamboocloud to realize extensive connection and platform decoupling, support the rapid construction of upper applications, reduce the complexity of application integration, and quickly support the launch and expansion of new business functions.
Sore Points
-
Multi-dimensional accounts co-exist
01/1. external users: how to manage the accounts of suppliers, manufacturing undertaking units, etc. and improve user experience.
2. Internet users: how to gather and unify the entrance of mobile applications (website, APP, WeChat public number), how to develop unified account naming norms and password management norms.
-
Independent self-service for each system
02/1. Each business system has independent self-service functions and needs to provide unified self-service: basic information viewing, password self-modification, self-recovery, role self-application change, permission self-application change, etc.
2. Through the unified self-service, convenient for users to use, at the same time, save the administrator's daily operation and maintenance time.
-
Without strong authentication function
03/1. The business systems only have the traditional static password authentication login method, the security access control needs to be strengthened.
2. Multi-factor authentication functions such as face, fingerprint, voice print, scan code and OTP need to be added.
-
Non-automated account management
04/1. Inefficiency of the existing application system in creating/updating/disabling accounts and other processes, currently in a semi-automatic, manual way.
2. Internal and external users need to define the account management process separately according to different scenarios.
3.Need to establish external unit registration approval flow and set system authority approval nodes.
-
Decentralized user identity management
05/1. There are multiple institutions and various types of users, so it is impossible to conduct unified and closed-loop management.
2. User identity storage is scattered and there is no centralized user library.
3. There is no uniform user management standard.
-
Lack of centralized control of applications
06/1. There are many types of applications in the automobile industry, such as production, finance, R&D, marketing, etc., which are not centrally managed and have isolated information islands.
2. The application authentication methods are single, mostly passwords, QR codes and other authentication methods, without multi-factor authentication.
3. No centralized management standard is applied.
-
User identity security needs to be fully guaranteed
07/1. User rights are not centrally controlled and controlled in the whole life cycle.
2. Unable to conduct compliance audit on user rights.
3. After the Internet of Things and other technologies are applied to the automotive field, the problem of data security becomes more and more prominent.
-
User experience needs to be improved
08/1. Administrator users need to spend a lot of energy on the management of personnel, institutions and applications.
2. End users need to log in to the application through multiple portals.
3. There is no unified user management process from automobile R&D design, logistics supply, manufacturing, sales and service, etc.
-
Lack of security control over access rights
09/Lack of authority life cycle management system that runs through all systems. For example, an airline company found that more than 9.4 million passengers' information had been viewed without authorization. -
Heavy workload and low efficiency in operation and maintenance
10/Whether it is internal staff or external customers, there are a lot of work such as manually opening accounts, manually empowering people, and manually reclaiming permissions.
IAM can effectively solve pain points
In view of many information security risks faced by the real estate industry, the intelligent identity management platform of Bamboocloud realizes the organizational structure and unified identity management of all employees, designs a comprehensive and safe unified authentication implementation scheme, establishes a unified authority management model, records users' access behaviors, and forms behavior tracking records.
The comprehensive unified identity management platform solution based on Bamboocloud IAM includes identity management, authentication management, self-service, authority management and security audit, which improves the service quality and user experience of users in different dimensions, such as internal users, outsourcing users, distributors, contractors and Internet users, and lays a solid foundation for business development.
Values
-
Operations Management
The Bamboocloud IAM system promotes IT consolidation, optimizes IT resources, saves operation and maintenance costs and expenses, and improves management and operation capabilities.
-
Work Efficiency
The Bamboocloud IAM system integrates IT information resources, optimizes business processes, automates approval work, and significantly improves work efficiency.
-
Risk Management
By solidifying IT processes related to the Bamboocloud IAM system, strengthen application system security management and information protection to reduce operational risks.
-
Capacity Expansion
Accelerate IT integration for new businesses and quickly replicate management capabilities through standardized user management templates and Bamboocloud IAM system implementation solutions.
Integrated Apps
Bamboocloud has integrated many application systems in the transportation industry, including LMS, GIS, IOC, integrated traffic management information system, etc., and realized dozens of connectors, so as to quickly realize application docking.
