A Journal of
Identity Management
| HOME | EVENTS | RESOURCES | NEWSLETTERS | IDENTORATI | ABOUT |
|
|
|
A Journal of |
|
Departments Home
|
Recently Added Resources Role Based Access Control: What is it, why bother and how to implement it?White Paper TOPIC: Roles Written/presented by: This document is intended to introduce readers to role based access control (RBAC), as applied to large numbers of users and multiple IT systems. It is organized into five distinct parts: 1. Development of RBAC concepts from a simple model to a complex but realistic privilege management infrastructure. 2. Business drivers to motivate organizations to use an RBAC system to manage security privileges. 3. Process for deploying RBAC into an organization. 4. Maintenance tasks for keeping a deployed RBAC system functioning smoothly. 5. Organizational impact of the deployment project and of the running RBAC system. SPONSOR: M-tech On Identity Assurance in the Presence of Federated Identity Management Systems White Paper TOPIC: Identity Federation Written/presented by: Baldwin, Adrian; Casassa Mont, Marco; Beres, Yolanta; Shiu, Simon In this paper we address the appropriate management of risk in federated identity management systems by presenting an identity assurance framework and supporting technologies. We start by discussing the risk mitigation framework that should be part of any identity assurance solution. We then demonstrate how our model based assurance technologies can be used to report success of an identity assurance programme. We discuss how this approach can be used to gain trust within a federated identity management solution both by communicating the nature of the assurance framework and that risks are successfully being mitigated. Finally, we show the importance of automation of controls in easing operational costs; providing improved audit information and changing the risk mitigation landscape. SPONSOR: HP Identity Management (IdM) Slides TOPIC: Identity management Written/presented by: Identity management is moving ahead rapidly. Shibboleth and InCommon are making great strides. Representatives from the banking and credit card industries are sitting around the table with federal and state government agencies in the Electronic Identity Assurance Expert Group (EIAEG) within the Liberty Alliance. The Credential Assessment Framework, developed by NIST, the National Institute of Standards and Technology, is being applied to an expanding federation of public and private institutions, including a number of campuses. The Identity Management working group will review these and other current activities of interest and chart a path for future action. SPONSOR: Educause A Case for Collaborative Identity Management in a Complex Decentralized Environment Slides TOPIC: Identity management Written/presented by: Andrea Beesing (Cornell University) and David S. Yeh (Cornell University) Using the identity life cycle of the Cornell student as a use case, we will discuss the value of approaching identity management as a collective responsibility. The business and IT sides of the house must partner to meet rising expectations for streamlined access to information in a world where services are distributed not only across multiple campus units but also across multiple institutions. SPONSOR: Educause Courion Perspective – Role Management White Paper TOPIC: Roles Written/presented by: Role management can be both very challenging and very rewarding to customers seeking simplified user administration, efficient user provisioning, and improved compliance and risk management. Download an informative and educational white paper detailing best practices and considerations around the business and technology aspects of role management, and Courion’s experience-based approach to helping customers achieve their desired results. SPONSOR: Courion Courion Perspective – User Provisioning White Paper TOPIC: eProvisioning Written/presented by: User provisioning is the core component of a successful identity management program. Organizations need to control who has access to enterprise resources, what level of access individuals have, and who is authorized to grant access. Download an informative and educational white paper from Courion, the provisioning experts, detailing best practices for developing a user provisioning and access management strategy, key considerations when selecting an automated provisioning solution, and Courion’s results-oriented approach to automated user provisioning. SPONSOR: Courion Living List of Identity Management Forums White Paper TOPIC: Identity management Written/presented by: Incomplete, but useful listing of standards and discussion groups in IdM SPONSOR: ITU Effectively manage access to systems and information to help optimize integrity and facilitate compl White Paper TOPIC: Entitlement management Written/presented by: In the face of growing numbers of complex regulatory requirements, organizations must find a way to protect their information and systems while giving ever-growing numbers of users access to the systems and applications they need. This is particularly critical when it comes to the continually growing business requirement to increase employee, customer and trading-partner access to valuable data and resources, such as in a service oriented architecture (SOA) environment. SPONSOR: IBM Surviving an Identity Audit White Paper TOPIC: Regulatory Compliance Written/presented by: Matt Flynn In this whitepaper, I tried to help people at smaller organizations get their arms around some of the big challenges related to compliance. Specifically, the focus is on the identity portion of an IT audit. Regulations such as SOX, HIPAA, GLBA and PCI-DSS have requirements and/or guidance that relate directly to IT – more specifically to information security. And digital identities are at the core of information security. So, an audit of an organization's identity infrastructure is a vital component of an IT audit or a larger regulatory audit. In this paper, I cover the Identity Audit project lifecycle, leveraging a multi-regulatory approach, and creating a culture of compliance. SPONSOR: NetVision A Guide to Active Directory Replication How-to TOPIC: Directory issues Written/presented by: Laura E. Hunter * Transitioning to Active Directory * Maintaining consistency * Handling conflict resolution * Changes in Windows Server 2008 SPONSOR: Microsoft TechNet Federation Server vs. Open Source Toolkit White Paper TOPIC: Identity Federation Written/presented by: To give companies new to Secure Internet Single Sign-on (SSO) a better picture of the differences between a Standalone Server and Open Source Toolkit options, Ping Identity conducted a qualitative study of both implementation approaches. This paper introduces typical implementation steps, timelines, and a set of associated assumptions. SPONSOR: Ping Identity Identity Governance Framework Overview and Status Slides TOPIC: Regulatory Compliance Written/presented by: Phil Hunt and Prateek Mishra DIDW '07 presentation SPONSOR: Oracle SAP NetWeaver security and identity management Podcast TOPIC: Identity management Written/presented by: Andrew Dunning For IT departments, security is a persistent concern. When it comes to SAP NetWeaver, identity management, securely integrating IT systems and getting return on investment (ROI) from security projects are all issues users contend with. This SearchSAP.com podcast covers these topics and offers a quick SAP TechEd 2007 preview... SPONSOR: SAP Leading University Saves £25K Annually by Choosing the Right IdM Solution for Its Needs White Paper TOPIC: Identity management Written/presented by: The University of the West of England (UWE) has gained much recognition for its innovation and quality teaching approach. As is the nature of a large academic institution, its 26,000 students and 2,500 staff often have different passwords or user names to access systems. This required multiple feeds to authenticate users. To reduce this complexity and the associated support costs of increased IT administration, the university wanted to reduce the number of feeds, and streamline identity management across the institution. Working with Microsoft partner, Oxford Computer Group (Oxford), the university implemented a solution based on Microsoft Identity Integration Server (MIIS) 2003, Microsoft Windows Server 2003, and Microsoft Windows 2000 Server. MIIS 2003 runs as a Windows service, and data is stored within a dedicated Microsoft SQL Server database. SPONSOR: Microsoft How SMBs Can Reduce Costs, Secure Data and Ensure Compliance with an Identity Management Program White Paper TOPIC: Identity management Written/presented by: A strong identity management platform plays the dual role of gatekeeper and guardian of business intelligence and information. SMBs cannot operate effectively without having the ability to control who and what is able to access their networks and business systems, and many now have to be able to report on this information on a current and historic basis for compliance purposes. This whitepaper explores the factors driving SMBs toward stronger identity management platforms as well as these companies’ unique needs within the marketplace and how Oracle Identity Management solutions address them now — and into the future. SPONSOR: Oracle Demystifying biometrics: What's real, what's right and what's next? Webinar TOPIC: Biometrics Written/presented by: Joel Dubin This webcast offers an overview of the biometrics market, focusing on how the technology can work in the enterprise to strengthen multifactor authentication systems. It will also cover the various flavors of biometrics available today, from traditional fingerprint scanners and facial recognition systems to next-generation technologies that may change the product landscape. SPONSOR: Information Security Magazine Who Are All These Identity Working Groups and What Are They Doing? How-to TOPIC: eProvisioning Written/presented by: Johannes Ernst The array of initiatives and working groups and acronyms in identity is large, seemingly growing all the time and very definitely a bewildering jungle to the newcomer. This problem just came up again today in the Identity Open Space (see, one of those bewildering places!) after Digital Identity World (another), and I figured somebody had to post a simple map to the place, and that might as well be me. So here you are. Let me know what I forgot; and, if you are part of one of the initiatives that I mention, please correct me if my description should be improved. SPONSOR: Netmesh PIV Data Generator and PIV Data Loader Code TOPIC: eProvisioning Written/presented by: NIST The Data Generator is intended as a reference implementation that facilitates creation of PIV test data objects. The data generator can be used to generate PIV test data that is conformant to the data requirements set forth in FIPS 201, SP 800-73, SP 800-76, and SP 800-78. Developers and integrators are welcome to use the reference utility and its generated data objects in test environments. The data generator has been enhanced to allow dynamic data production, include test data assertion, and be conformant to the PIV Data Model Tester. The Data Loader utility can be used to load the test data on to PIV conformant cards. SPONSOR: NIST SAP TechEd 07, SIM103: Identity Management Using Open Standards: Exploring the SPML Interface in SAP Webinar TOPIC: eProvisioning Written/presented by: Martin Raepple In my one-hour lecture, you'll get an in-depth insight into SPML and you'll learn how you can use it to streamline your identity business processes. SPONSOR: SAP Reducing Trust in the PKG in Identity Based Cryptosystems White Paper TOPIC: Identity management Written/presented by: Vipul Goyal One day, you suddenly find that a private key corresponding to your Identity is up for sale at e-Bay. Since you do not suspect a key compromise, perhaps it must be the PKG who is acting dishonestly and trying to make money by selling your key. How do you find out for sure and even prove it in a court of law? This paper introduces the concept of Accountable Authority Identity based Encryption (A-IBE). A-IBE is a new approach to mitigate the (inherent) key escrow problem in identity based encryption schemes. Our main goal is to restrict the ways in which the PKG can misbehave. In our system, if the PKG ever maliciously generates and distributes a decryption key for an Identity, it runs the risk of being caught and prosecuted. SPONSOR: University of California, Los Angeles |
To see the resources for a particular topic, just choose it from this list: |
© Copyright 2003 - 2007, The Virtual Quill
