HOME EVENTS RESOURCES NEWSLETTERS IDENTORATI ABOUT

A Journal of
Identity Management


Departments

Home
Events
Resources
Identorati
Newsletters

Recently Added Resources

Role Based Access Control: What is it, why bother and how to implement it?
White Paper
TOPIC: Roles
Written/presented by:
This document is intended to introduce readers to role based access control (RBAC), as applied to large numbers of users and multiple IT systems. It is organized into five distinct parts: 1. Development of RBAC concepts from a simple model to a complex but realistic privilege management infrastructure. 2. Business drivers to motivate organizations to use an RBAC system to manage security privileges. 3. Process for deploying RBAC into an organization. 4. Maintenance tasks for keeping a deployed RBAC system functioning smoothly. 5. Organizational impact of the deployment project and of the running RBAC system.
SPONSOR: M-tech


On Identity Assurance in the Presence of Federated Identity Management Systems
White Paper
TOPIC: Identity Federation
Written/presented by: Baldwin, Adrian; Casassa Mont, Marco; Beres, Yolanta; Shiu, Simon
In this paper we address the appropriate management of risk in federated identity management systems by presenting an identity assurance framework and supporting technologies. We start by discussing the risk mitigation framework that should be part of any identity assurance solution. We then demonstrate how our model based assurance technologies can be used to report success of an identity assurance programme. We discuss how this approach can be used to gain trust within a federated identity management solution both by communicating the nature of the assurance framework and that risks are successfully being mitigated. Finally, we show the importance of automation of controls in easing operational costs; providing improved audit information and changing the risk mitigation landscape.
SPONSOR: HP


Identity Management (IdM)
Slides
TOPIC: Identity management
Written/presented by:
Identity management is moving ahead rapidly. Shibboleth and InCommon are making great strides. Representatives from the banking and credit card industries are sitting around the table with federal and state government agencies in the Electronic Identity Assurance Expert Group (EIAEG) within the Liberty Alliance. The Credential Assessment Framework, developed by NIST, the National Institute of Standards and Technology, is being applied to an expanding federation of public and private institutions, including a number of campuses. The Identity Management working group will review these and other current activities of interest and chart a path for future action.
SPONSOR: Educause


A Case for Collaborative Identity Management in a Complex Decentralized Environment
Slides
TOPIC: Identity management
Written/presented by: Andrea Beesing (Cornell University) and David S. Yeh (Cornell University)
Using the identity life cycle of the Cornell student as a use case, we will discuss the value of approaching identity management as a collective responsibility. The business and IT sides of the house must partner to meet rising expectations for streamlined access to information in a world where services are distributed not only across multiple campus units but also across multiple institutions.
SPONSOR: Educause


Courion Perspective – Role Management
White Paper
TOPIC: Roles
Written/presented by:
Role management can be both very challenging and very rewarding to customers seeking simplified user administration, efficient user provisioning, and improved compliance and risk management. Download an informative and educational white paper detailing best practices and considerations around the business and technology aspects of role management, and Courion’s experience-based approach to helping customers achieve their desired results.
SPONSOR: Courion


Courion Perspective – User Provisioning
White Paper
TOPIC: eProvisioning
Written/presented by:
User provisioning is the core component of a successful identity management program. Organizations need to control who has access to enterprise resources, what level of access individuals have, and who is authorized to grant access. Download an informative and educational white paper from Courion, the provisioning experts, detailing best practices for developing a user provisioning and access management strategy, key considerations when selecting an automated provisioning solution, and Courion’s results-oriented approach to automated user provisioning.
SPONSOR: Courion


Living List of Identity Management Forums
White Paper
TOPIC: Identity management
Written/presented by:
Incomplete, but useful listing of standards and discussion groups in IdM
SPONSOR: ITU


Effectively manage access to systems and information to help optimize integrity and facilitate compl
White Paper
TOPIC: Entitlement management
Written/presented by:
In the face of growing numbers of complex regulatory requirements, organizations must find a way to protect their information and systems while giving ever-growing numbers of users access to the systems and applications they need. This is particularly critical when it comes to the continually growing business requirement to increase employee, customer and trading-partner access to valuable data and resources, such as in a service oriented architecture (SOA) environment.
SPONSOR: IBM


Surviving an Identity Audit
White Paper
TOPIC: Regulatory Compliance
Written/presented by: Matt Flynn
In this whitepaper, I tried to help people at smaller organizations get their arms around some of the big challenges related to compliance. Specifically, the focus is on the identity portion of an IT audit. Regulations such as SOX, HIPAA, GLBA and PCI-DSS have requirements and/or guidance that relate directly to IT – more specifically to information security. And digital identities are at the core of information security. So, an audit of an organization's identity infrastructure is a vital component of an IT audit or a larger regulatory audit. In this paper, I cover the Identity Audit project lifecycle, leveraging a multi-regulatory approach, and creating a culture of compliance.
SPONSOR: NetVision


A Guide to Active Directory Replication
How-to
TOPIC: Directory issues
Written/presented by: Laura E. Hunter
* Transitioning to Active Directory * Maintaining consistency * Handling conflict resolution * Changes in Windows Server 2008
SPONSOR: Microsoft TechNet


Federation Server vs. Open Source Toolkit
White Paper
TOPIC: Identity Federation
Written/presented by:
To give companies new to Secure Internet Single Sign-on (SSO) a better picture of the differences between a Standalone Server and Open Source Toolkit options, Ping Identity conducted a qualitative study of both implementation approaches. This paper introduces typical implementation steps, timelines, and a set of associated assumptions.
SPONSOR: Ping Identity


Identity Governance Framework Overview and Status
Slides
TOPIC: Regulatory Compliance
Written/presented by: Phil Hunt and Prateek Mishra
DIDW '07 presentation
SPONSOR: Oracle


SAP NetWeaver security and identity management
Podcast
TOPIC: Identity management
Written/presented by: Andrew Dunning
For IT departments, security is a persistent concern. When it comes to SAP NetWeaver, identity management, securely integrating IT systems and getting return on investment (ROI) from security projects are all issues users contend with. This SearchSAP.com podcast covers these topics and offers a quick SAP TechEd 2007 preview...
SPONSOR: SAP


Leading University Saves £25K Annually by Choosing the Right IdM Solution for Its Needs
White Paper
TOPIC: Identity management
Written/presented by:
The University of the West of England (UWE) has gained much recognition for its innovation and quality teaching approach. As is the nature of a large academic institution, its 26,000 students and 2,500 staff often have different passwords or user names to access systems. This required multiple feeds to authenticate users. To reduce this complexity and the associated support costs of increased IT administration, the university wanted to reduce the number of feeds, and streamline identity management across the institution. Working with Microsoft partner, Oxford Computer Group (Oxford), the university implemented a solution based on Microsoft Identity Integration Server (MIIS) 2003, Microsoft Windows Server 2003, and Microsoft Windows 2000 Server. MIIS 2003 runs as a Windows service, and data is stored within a dedicated Microsoft SQL Server database.
SPONSOR: Microsoft


How SMBs Can Reduce Costs, Secure Data and Ensure Compliance with an Identity Management Program
White Paper
TOPIC: Identity management
Written/presented by:
A strong identity management platform plays the dual role of gatekeeper and guardian of business intelligence and information. SMBs cannot operate effectively without having the ability to control who and what is able to access their networks and business systems, and many now have to be able to report on this information on a current and historic basis for compliance purposes. This whitepaper explores the factors driving SMBs toward stronger identity management platforms as well as these companies’ unique needs within the marketplace and how Oracle Identity Management solutions address them now — and into the future.
SPONSOR: Oracle


Demystifying biometrics: What's real, what's right and what's next?
Webinar
TOPIC: Biometrics
Written/presented by: Joel Dubin
This webcast offers an overview of the biometrics market, focusing on how the technology can work in the enterprise to strengthen multifactor authentication systems. It will also cover the various flavors of biometrics available today, from traditional fingerprint scanners and facial recognition systems to next-generation technologies that may change the product landscape.
SPONSOR: Information Security Magazine


Who Are All These Identity Working Groups and What Are They Doing?
How-to
TOPIC: eProvisioning
Written/presented by: Johannes Ernst
The array of initiatives and working groups and acronyms in identity is large, seemingly growing all the time and very definitely a bewildering jungle to the newcomer. This problem just came up again today in the Identity Open Space (see, one of those bewildering places!) after Digital Identity World (another), and I figured somebody had to post a simple map to the place, and that might as well be me. So here you are. Let me know what I forgot; and, if you are part of one of the initiatives that I mention, please correct me if my description should be improved.
SPONSOR: Netmesh


PIV Data Generator and PIV Data Loader
Code
TOPIC: eProvisioning
Written/presented by: NIST
The Data Generator is intended as a reference implementation that facilitates creation of PIV test data objects. The data generator can be used to generate PIV test data that is conformant to the data requirements set forth in FIPS 201, SP 800-73, SP 800-76, and SP 800-78. Developers and integrators are welcome to use the reference utility and its generated data objects in test environments. The data generator has been enhanced to allow dynamic data production, include test data assertion, and be conformant to the PIV Data Model Tester. The Data Loader utility can be used to load the test data on to PIV conformant cards.
SPONSOR: NIST


SAP TechEd 07, SIM103: Identity Management Using Open Standards: Exploring the SPML Interface in SAP
Webinar
TOPIC: eProvisioning
Written/presented by: Martin Raepple
In my one-hour lecture, you'll get an in-depth insight into SPML and you'll learn how you can use it to streamline your identity business processes.
SPONSOR: SAP


Reducing Trust in the PKG in Identity Based Cryptosystems
White Paper
TOPIC: Identity management
Written/presented by: Vipul Goyal
One day, you suddenly find that a private key corresponding to your Identity is up for sale at e-Bay. Since you do not suspect a key compromise, perhaps it must be the PKG who is acting dishonestly and trying to make money by selling your key. How do you find out for sure and even prove it in a court of law? This paper introduces the concept of Accountable Authority Identity based Encryption (A-IBE). A-IBE is a new approach to mitigate the (inherent) key escrow problem in identity based encryption schemes. Our main goal is to restrict the ways in which the PKG can misbehave. In our system, if the PKG ever maliciously generates and distributes a decryption key for an Identity, it runs the risk of being caught and prosecuted.
SPONSOR: University of California, Los Angeles



If you have an interesting Identity resource, us a note and we'll add it to the list.


To see the resources for a particular topic, just choose it from this list:


© Copyright 2003 - 2007, The Virtual Quill