Search This Blog

Wednesday, July 20, 2005

The seven flaws of identity


NETWORK WORLD NEWSLETTER: DAVE KEARNS ON IDENTITY MANAGEMENT
07/20/05
Today's focus: The seven flaws of identity

Dear security.world@gmail.com,

In this issue:

* Burton Group highlights what we need to pay attention to in
  identity mgmt.
* Links related to Identity Management
* Featured reader resource
_______________________________________________________________
This newsletter is sponsored by Fluke Networks
Special Report: Understanding the Changing Nature of Branch
Office Networks

Significant revenue is generated at the branch office. Business
needs to be seamless between locations. This special report
provides an approach to a resourceful way of using new tools and
analysis for branch offices. Learn about the analysis and
tools used to run a seamless branch business, click here to
download the report now,
http://www.fattail.com/redir/redirect.asp?CID=108595
_______________________________________________________________
WHAT'S THE WIMAX STORY?

We've all heard the ebb and flow of WiMAX enthusiasm - ranging
from "it'll take over the world" hype to "it's already a bust"
anti-hype, and everywhere in between. If you are curious as to
where WiMax stands or need a refresher on what it is all about,
click here for the WiMAX story:
http://www.fattail.com/redir/redirect.asp?CID=108446
_______________________________________________________________

Today's focus: The seven flaws of identity

By Dave Kearns

One highlight of the annual Catalyst conference put on by the
Burton Group is the address by Mike Neuenschwander, who was
recently promoted to associate research director. He's usually
good for a few outrageous remarks as well as some predictions
that are memorable, if not always accurate. Nevertheless, he
almost always provides a breath of fresh air and an entertaining
diversion from the product spotlight sessions delivered by
vendors or the interesting, but usually uninspiring, case
studies from Burton clients.

Neuenschwander's new role, though, seems to have inhibited his
presentation just a tad - or, perhaps, left him less time to
prepare - as outside of destroying a cell phone and a guitar he
seemed somewhat muted. He did manage some subtle jests in trying
to bring a light hand to some heavy principles, though. One
example was his "Seven Flaws of Identity" a not-so-subtle play
on Kim Cameron's "Seven Laws of Identity" (
<http://www.identityblog.com/stories/2004/12/09/thelaws.html> ).
The glib title shouldn't mask the importance of Neuenschwander's
"Flaws," which we all need to pay attention to. They are:

1) Failure of the weakest links mustn't lead to catastrophe -
encrypting the channel doesn't stop dumpster diving.
2) Not putting the role before the start role engineering is
important, but it doesn't drive the project.
3) Not every identity nail requires the technology hammer -
technology may be fine, but without governance, it will fail.
4) Use of a system invites abuse of it so test the architecture
with attack vectors.
5) Identifying things doesn't make them more secure -
identification can improve security, but it's not the inevitable
outcome.
6) Identity isn't about the individual - it's about the
relationship; identity management encompasses the services
communities need for organization.
7) There are a lot more than seven flaws.

In fact, there are probably a huge number of flaws but as
Neuenschwander concludes identity management empowers
organizations to flourish, so it's worth the trouble and worth
the effort to root out the flaws and correct them. These are
good points to ponder, things to remember, and - dare I say it -
laws you should follow when undertaking any identity project.

RELATED EDITORIAL LINKS

HP pumps up ID management suite
Network World, 07/18/05
http://www.networkworld.com/nldsv3445

Sun grows open source offerings
Network World, 07/18/05
http://www.networkworld.com/news/2005/071805-opensso.html?rl
_______________________________________________________________
To contact: Dave Kearns

Dave Kearns is a writer and consultant in Silicon Valley. He's
written a number of books including the (sadly) now out of print
"Peter Norton's Complete Guide to Networks." His musings can be
found at Virtual Quill <http://www.vquill.com/>.

Kearns is the author of three Network World Newsletters: Windows
Networking Tips, Novell NetWare Tips, and Identity Management.
Comments about these newsletters should be sent to him at these

respective addresses: <mailto:windows@vquill.com>,
<mailto:netware@vquill.com>, <mailto:identity@vquill.com>.

Kearns provides content services to network vendors: books,
manuals, white papers, lectures and seminars, marketing,
technical marketing and support documents. Virtual Quill
provides "words to sell by..." Find out more by e-mail at
<mailto:info@vquill.com>
_______________________________________________________________
This newsletter is sponsored by Fluke Networks
Special Report: Understanding the Changing Nature of Branch
Office Networks

Significant revenue is generated at the branch office. Business
needs to be seamless between locations. This special report
provides an approach to a resourceful way of using new tools and
analysis for branch offices. Learn about the analysis and
tools used to run a seamless branch business, click here to
download the report now,
http://www.fattail.com/redir/redirect.asp?CID=108595
_______________________________________________________________
ARCHIVE LINKS

Archive of the Identity Management newsletter:
http://www.networkworld.com/newsletters/dir/index.html
_______________________________________________________________
FEATURED READER RESOURCE
THE NEW DATA CENTER: SPOTLIGHT ON STORAGE

This Network World report takes a look at storage trends such as
virtualization, encryption and archiving. Here you will also
find seven tips for managing storage in the new data center, how
storage encryption can help ease the threat of identity theft,
why one exec believes its all about the information and more.
Click here:
<http://www.networkworld.com/supp/2005/ndc4/>
_______________________________________________________________
May We Send You a Free Print Subscription?
You've got the technology snapshot of your choice delivered
at your fingertips each day. Now, extend your knowledge by
receiving 51 FREE issues to our print publication. Apply
today at http://www.subscribenw.com/nl2

International subscribers click here:
http://nww1.com/go/circ_promo.html
_______________________________________________________________
SUBSCRIPTION SERVICES

To subscribe or unsubscribe to any Network World e-mail
newsletters, go to:
<http://www.nwwsubscribe.com/Changes.aspx>

To change your e-mail address, go to:
<http://www.nwwsubscribe.com/ChangeMail.aspx>

Subscription questions? Contact Customer Service by replying to
this message.

This message was sent to: security.world@gmail.com
Please use this address when modifying your subscription.
_______________________________________________________________

Have editorial comments? Write Jeff Caruso, Newsletter Editor,
at: <mailto:jcaruso@nww.com>

Inquiries to: NL Customer Service, Network World, Inc., 118
Turnpike Road, Southborough, MA 01772

For advertising information, write Kevin Normandeau, V.P. of
Online Development, at: <mailto:sponsorships@nwfusion.com>

Copyright Network World, Inc., 2005

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)