Abstract: An embodiment intercepts an authentication request being sent from a secure web service to a user device associated with a user. The embodiment transmits, responsive to the authentication request, a credential request to a credential storage, wherein the credential request includes a request for a credential associated with the user and the secure web service. The embodiment receives, responsive to the credential request, the credential associated with the user and the secure web service. The embodiment transmits, as a response to the authentication request, the credential associated with the user to the secure web service. The embodiment intercepts, responsive to successful validation of the credential by the secure web service, an authentication response from the secure web service, where the authentication response includes session data required for maintaining an authenticated session with the secure web service. The embodiment forwards the authentication response with the session data to the user device.

Abstract: A computer-implemented method that secures cloud services from imposters automatically activating an imposter security service (ISS) responsive to receiving an imposter identifier (IID) of an imposter from an identity access and management system (IAMS). The ISS comprises a manipulation mapping table (MMT) that stores configurable factors to assist in control of execution of a cloud service security element (CSSE) in a respective cloud service of the cloud services. The ISS also comprises a decision engine (DE) that interacts with the MMT. The method exchanges imposter security information between the ISS and the CSSE and between the MMT and the DE, and directs the imposter security information to be sent to security information and event management (SIEM).