We have a problem with the “A” in the infosec triad of confidentiality, integrity, and availability. After multiple global outages caused by a handful of chokepoints on the wider internet during 2025, it is clear that we can no longer assume that the internet backplane for SaaS-based identity will be as robust as needed for critical security workloads. The move to SaaS-first identity security models has been the trend for over ten years, and will likely continue broadly regardless of these new challenges, though practitioners everywhere must be prepared to adapt. What architectural patterns and solutions should identity practitioners begin looking at to ensure continuous identity security and compliance regardless of WAN connectivity? How can organizations operate reliably when another major internet degradation inevitably hits? Fortunately, we can look to some non-standard implementations in niche fields for some ideas and deployment patterns which can support continued operations in our modern SaaS-first enterprises without bringing everything back into your datacenter. In this talk, Jon Lehtinen will describe how organizations can architect their identity security solutions to provide robust authentication, authorization, and compliance, even when the connection to authoritative sources are denied, degraded, intermittent, or limited, and ensure your organization stays productive, synchronized, and secure.