The BeyondCorp model, cooked up by Google in 2011, has the following tenants:
Trust no network;
Every request to applications or data must be encrypted, authenticated and authorized.
Every application and API is on the Internet.
Google's BeyondCorp approach is being used in Google Cloud Platform's Cloud Identity service, which was launched at Google Cloud Next in London. "We've had a lot of success internally with the model and what we've received good feedback from customers, but they wanted to use it (Cloud Identity and BeyondCorp) throughout the organization and as a standalone product," said Lakshminarayanan.
Lakshminarayanan also said that Google Cloud Platform will launch a beta of Cloud Identity for Customers and Partners (CICP) in a move that will manage identity and access management. Lakshminarayanan said the service will allow developers to focus on their apps by using a drop-in custom authentication service for apps.
To complement Cloud Identity, Google Cloud Platform is launching out LDAP-as-a-service to cover on-premises and cloud applications. The service will roll out in "coming weeks" and be aimed at traditional tools such as Microsoft's Active Directory as well as wares from Google partner Okta.
"We believe this is a federated world. We respect our partnership with Okta and customers can use Cloud Identity depending on whatever they want to use us for," said Lakshminarayanan.