In many cases today, cloud identity is handled by Security Assertion Markup Language (SAML) assertions, which can enable federated identity across cloud vendors.
Chenxi Wang, vice president of Cloud Security & Strategy at CipherCloud,noted that identity management is only one piece of the puzzle for cloud security, and the new open API effort will cover issues such as data classification, data protection and access management.
“We will not propose new protocols to replace SAML, but instead, we will fill gaps where existing standards are lacking,” Wang said. “For instance, how does the enterprise specify to the cloud service that a particular piece of data and content can only be stored in a particular geography? You can’t do that today automatically.”