30 Jul 2010
Planet Identity
Nishant Kaushik - Oracle: Beyond SPML: Access Provisioning in a Services World
Another Burton Group Catalyst conference has come to a close, and as always it was a treasure trove of stories, ideas and conversations. Which is why it was great to have the uncertainty around the conference laid to rest when it was announced that it will be back next year (July 26-29 in San Diego, [...]
30 Jul 2010 7:30pm GMT
Tom Kemp - Centrify: Buckle Up With PCI ... It's Becoming the Law
A new Washington state law went into effect earlier this month that makes a business or a credit card processor liable for unauthorized access to credit card information it stores. The key thing with the law is that businesses or processors are not liable if they are PCI DSS compliant, so in effect this further motivates businesses who process credit cards to get compliant. This is part of a growing trend for states to in effect incorporate PCI into state law.
30 Jul 2010 1:59pm GMT
Jackson Shaw - Quest: CA takes cloud to new levels of fluffiness!
What are these new capabilities I asked? I started trolling around the website and looking at various documents searching on the word "cloud". What I came up with was that CA supports provisioning connectors to Salesforce.com. You can watch a demo of this incredible fluffiness here: http://www.ca.com/media/datacenter-of-the-future/secure1.swfToday's announcement includes the availability of new CA Identity Manager capabilities that extend identity management to cloud applications; it highlights how a customer has leveraged the CA SiteMinder portfolio to control access to its SaaS applications; and it features how CA Technologies is providing IAM as a service from the cloud.
So, CA can provision to Salesforce.com. Congratulations guys! Job well done!! Is there any value add above provisioning and de-provisioning? Something that would actually be more than just adding or deleting users? Anything? Anything?
With a flashback to the famous "Bueller? Bueller? Bueller?" scene in Ferris Bueller's Day Off I recorded this…
Technorati Tags: identity management,cloud computing,salesforce.com,provisioning
30 Jul 2010 12:35pm GMT
29 Jul 2010
Planet Identity
Mark Wilcox - Oracle: OTN Licensing Question for our Sun DSEE Customers
I got a comment on my blog asking: " What kind of licensing terms is Oracle using for this release? Are they following the Sun licensing where you can download and use this for free and choose pay for...
29 Jul 2010 9:03pm GMT
Matt Flynn - NetVision: Next Generation Compliance: Expect Answers
As an industry, we've been getting much better with understanding access rights and enabling compliance with access-related regulatory requirements. I know there are nay-sayers out there who focus on the negative - what we haven't done well. But, overall, given the speed at which we've enabled access to sensitive information, it's pretty amazing that we have any control at all.
Having said that, one of the primary problems with our current solutions for tracking changes and enabling audit response is that we just can't make sense of all the data that's being collected. One of the findings in the SANS Log Management Survey for 2010 is that the top two challenges with log management are being able to search through the data and being able to interpret the results. That's no surprise given the mountains of data generated by log management solutions. But it's also alarming because that's the exact value proposition that those solutions are supposed to provide. It's like a car that does everything well except move from one place to another.

There's a better way. In this SC Magazine article titled Answers, Not Data: The Key to Access Security, David Rowe explains that next generation audit solutions need to focus on providing answers and enabling continuous audit rather than stubbornly latching on to quantity of data as the success indicator. Give it a read and please let me know what you think.
29 Jul 2010 2:24pm GMT
Jackson Shaw - Quest: Simplifying Unix User Management and Lifecycle
Earlier this week Quest announced the release of Quest Unix Identity Manager. This is a new product for us and congratulations to the team that worked on QIMU. They really did a tremendous job. QIMU is a Java-based application that works from any browser and enables a Unix administrator to discover Unix servers and manage the user (/etc/passwd) and group (/etc/group) files on all the discovered machines. The best part is that QIMU is free. You can download it from http://www.freeunixiam.com or any of the popular shareware or freeware sites that are available on the internet. QIMU is also the new administration console for Quest Authentication Services 4.0. The only difference is with QAS 4.0 there are additional screens or functions that are enabled.
So whether you use QIMU just for Unix user lifecycle management - for free - or to help manage your Active Directory integrated users via QAS 4.0 I hope you find QIMU useful.
Let me know what you think of QIMU!
29 Jul 2010 1:58pm GMT
CA on Security Management: Securing Your Road to Virtualization & Cloud Blog Series: Elasticizing Your Web Access Management Infrastructure
29 Jul 2010 11:46am GMT
Ping Talk - Ping Identity: Ping Celebrates 500th Customer at Burton Catalyst
We achieved a major milestone this week surpassing 500 enterprise and SaaS customers. We want to personally thank you for choosing Ping. If you happen to be in San Diego this week for Burton Catalyst, come celebrate with us tonight at the Marriott Gaslamp Altitude bar.
.jpg)
29 Jul 2010 1:58am GMT
28 Jul 2010
Planet Identity
Mark Wilcox - Oracle: Oracle Directory Server Enterprise Edition 11g is now released.
We released Oracle Directory Server Enterprise Edition 11g. This is the first Oracle branded release of the directory formerly known as the "Sun/iPlanet/Netscape" Directory. This release also coincided with the release of other key Oracle 11g Identity Management components...
28 Jul 2010 10:33pm GMT
Kaliya Hamlin - Identity Woman: Navigating the New Normal: John Seely Brown at Catalyst
28 Jul 2010 9:49pm GMT
Phil Windley - Kynetx: Remembering in KRL: Using Entity Variables with Forms
Dan asked a question in the Kynetx Developer Exchange about remembering user entered data in KRL. I gave him a brief outline of the solution but thought an example would be nice. This blog post is the detailed answer...
28 Jul 2010 8:33pm GMT
Ping Talk - Ping Identity: Where do we go from here? Thoughts from the Summit
It was a big-brain mixer last week at Ping's Cloud Identity Summit (CIS). If you were a sponge, you went home soaking wet.
Integration, standards, services, security, identity, trust, implementation, cooperation, engineering.
28 Jul 2010 4:20pm GMT
CA on Security Management: Identity is at the Center of Security Management for the Cloud
28 Jul 2010 3:34pm GMT
JISC Access Management Team: Counting the Costs of FAM10
After a lot of soul searching with regards to the current funding cuts, I have decided that it will be appropriate to go ahead with FAM10 this year with a real focus on practical benefits for librarians and developers. This decision was based on: The excellent feedback we received for FAM09; The fact that I had [...]
28 Jul 2010 1:20pm GMT
CA on Security Management: Access certification & attestation: Best practices for avoiding the rubber stamp syndrome
28 Jul 2010 6:10am GMT
Ping Talk - Ping Identity: Who is Kathi Becker?
My final #cis2010 blog entry is about Kathi Becker, the wizard that organized the 2010 Cloud Identity Summit. When Andre Durand, Ping Identity's CEO, conceived of this 5 short months ago, he turned to his old friend, Kathi Becker, to make it happen.
Andre was one of the partners in the Digital ID World (DIDW) conferences, along with the founder, Phil Becker, Kathi's husband. When the first DIDW was getting organized, Kathi could see that they were really struggling. So she offered her talents, pulled it off, and the rest is, as they say, history.
Kathi's long-time day job is as a management consultant with PLB Ventures where she is a Managing Partner. For over 30 years she has provided management consulting and leadership education. She is an expert in developing educational programs that "cut through the noise and get to the meat of the matter" helping executives develop leadership capabilities to achieve goals they never thought possible. Her ability to craft and deliver thought-provoking programs always leads to well attended, critically acclaimed sessions with measurable long-lasting results.
Kathi's clients include IBM, Microsoft, American Airlines, British Petroleum, U of Chicago Medical Center, Kaiser Permanente and Ford Motor Company.
The 2010 Cloud Identity Summit was by all accounts a huge success. The partnership between Andre and Kathi is another example of the power of community to work together to achieve great things. Next year should be even better as Andre, Kathi and team put their heads together to come up with the 2011 Cloud Identity Summit in Keystone.
When I saw Phil last week at the Summit, I told him that the secret in life for us guys was "marrying up". He laughed knowingly and nodded his head in agreement.
28 Jul 2010 12:22am GMT
