Identity Management News & Articles

Quick! Name all the third-party applications and cloud-based solutions your company is using right now. How many of them were authorized purchases? Do you know exactly who has access to all of them? We don’t want to be presumptuous, but something tells us that you may have some identity management issues. Enter SailPoint.

Kim Cameron, Distinguished Engineer and Chief Architect of AD at Microsoft as well as author of the Seven Laws of Identity impressed the crowd today at the Defrag 2009 Conference.

His session, “Identity as a Collaborative Foundation” began with the preface, “How are we recognized in different contexts?”

1. Foundation for personalization
2. The social mouse/keyboard
3. Foundation for collaboration and social phenomena
4. I can’t collaboration over time if I can’t recognize and refer to you

Mr. Cameron recognized a need to traverse silos and contextual separation because each person has a mosaic of identities. The architectural problem? The Internet is not designed with any way to know who you’re connected to and really, it’s “a patchwork quilt of kludges”.

Ideally, an identity metasystem would be created, with no vendorship, based on choices, where the user could see aspects of her digital life in a holistic way in order to promote user understanding, control and privacy.

So what would a claims-based model look like? It would include an abstraction layer for authentication, authorizing obtaining information about users devices and services. The balance would be the fine line between too much administration effort and not enough.

Mr. Cameron declared the pieces needed to implement this model could be reduced to three: framework, server, and information card selector. He added an AD federation service should work in the cloud.

Mr. Cameron closed his session with comments on the consumer space. Big and small service providers can support it with minimal disclosure tokens.

The Defrag 2009 Conference concludes today in Denver, Colorado.

With compliance issues top of mind for companies today, Identity and Access Management are critical components of any application. Keeping track of many users and their access to many different systems is often difficult and time consuming.

The Dot Net Factory understands this and has released the latest version of its EmpowerID suite. EmpowerID v4 is a Role-based Access Control (RBAC) suite for all enterprise resources.

EmpowerID offers a complete identity lifecycle management suite built on a .Net-based Service Oriented Architecture that utilizes Windows Workflow Foundation. And it’s based on Business Process Management.

Now if that doesn’t peek your interest….

In the final days of 2007, many a to-do list is being checked off. With all the last minute, “revolutionary” social web updates, you’d think Santa’s elves were part of the operation.

Case in point: OpenID, a universal signature mechanism that eliminates the need for multiple site logins, has been incorporated into Blogger.