Yes. Our REL-IDgateway has been scaled across millions of users by large financial institutions over the past two years. We’ve built it for performance and for Internet and IoT scale deployments.
Yes. TLS/SSL has structural issues, typically around the third-party authorities in the certificate trust chain. Even with a perfect implentation of SSL, these vulnerabilities cannot be avoided. Self-signed certificates have become one alternative to third-party a priori trust, but the mechanisms of certificate delivery and diversity are still subject to scaling issues. REL-ID resolves both the structural problems of SSL while also creating the two-way uniqueness that two-way, self-signed SSL implementations have been attempting for years and have yet to easily deliver. Moreover, the way that REL-ID connections are established makes the protocol itself equivalent to or faster than SSL.
No. REL-ID currently operates with applications connecting to gateway servers that sit in your enterprise DMZ. APIs are exposed from the REL-IDgateway Integration Server that can make any enterprise-side application into a REL-ID “aware” application, using the appropriate authentication, keys, and scopes for that application. Should an enterprise not want to use the default identity store inside the REL-IDgateway, the gateway server also exposes an LDAP BIND capability for bringing existing identity stores like ActiveDirectory into the REL-ID authentication process.
Our REL-IDcore (the SDK) was built to provide absolute flexibility for clientside integrations and toolkits. We have already integrated many authentication toolkits into the REL-ID framework and are enhancing that list with the best-of-breed biometrics, set to be rolled out in the next REL-ID release. We are also planning to roll out a FIDO integration of REL-ID, in order to standardize the way that third-party toolkits can operate with the REL-ID SDK.
The REL-IDgateway has been built to provide flexibility with regard to both identity storage, like ActiveDirectory, as well as secure application connectivity inside your enterprise. We have identified a shift towards SaaS integrations and are building specific SAML/OAuth2/OpenID Connect capabilities into the REL-IDgateway. With this new flexibility, REL-ID can provide secure authentication from any device, as well as a Single-Sign-On experience with any third party application, all inside the REL-ID secure channel.