SAML is a standard defined by Oasis that describes an authentication and authorization protocol. This protocol defines the necessary communication flow between systems the ultimate result of which is a trust-assertion message on behalf of the user which is consumed by the target system to determine that they were A.) authenticated and B.) authorized to [...]
Holy cow, that is a lot of people put at risk. Mastercard is just the latest to annouced that there customer’s personal identity information was compramised. Following closely behind Citigroup and DSW Mastercard annouced the exposure of upto 40 million customer records.
Citigroup admitted that it UPS lost Citigroup backup tapes containing the personal information for 3.9 million customers. Citigroup is now in the process of notifying the affected customers by traditional mail; can you imagine the cost? Well I hope remember to use bulk mailing rates, but still it has to be close to a million [...]
HP Continues to invest in the HP OpenView franchise with the introduction of OpenView Compliance Manager. This solution is being pitched as a way for IT to monitor and evalute business processes to try and maintain compliance with legal or regulatory compliance requirements.
CA announced it is picking up Niku for a bunch of money. This will add IT Managment software alongside of their Unicenter product. Nuku flagship product, Clarity, is directed at top level IT managment and helps them interpret and plan with operationl metrics.
Changes to the MIIS Alliance, while pretty dramatic, are not unexpected since all the members of the alliance are of a size to make them possible aquisition targets. Looks like Oblix has dropped out of the MIIS Alliance a direct result of their aquistion by Oracle. This didn’t really suprise me since Oracle has it’s [...]
Computed Groups are Active Directory security or distribution groups whose membership is deteremined by an LDAP query instead of set of manual entries. The assumption here is that you will be able to identify an user attribute that will determine group membership. For example, if department = Sales put the user in the All Sales [...]
SP2 should have a pretty big impact on the viability of MIIS and the acceptance of MIIS in the IdM space. Seems like they are going to be spot on by targeting HR/ERP and compliance. After seeing their password solution at DEC this year, I will admit I’m a bit worried they will take it [...]
Looks like IBM is getting serious about automating the provisioning of Identities. From the little I’ve seen of Identity Manager in the past it had a long way to go to come up to the level of some other Identity Administraition tools out there… maybe this new release will make them a bit more competitive.
I reciently made a pretty interesting discovery. Many of deployed Identity Managment Platforms do not provide the necessary tracking or reporting that the customer requires to meet legal or organizational compliance requriements.
