Network Computingwww.networkcomputing.com

Federated Identity Management

Posted by
January 19, 2007

Tags: Gerry Gebel, SSO, compliance, federated identity management, federation, identity management, multiple domains, security standards, Company Privacy Policies, Data Networking & Management, Data Protection, Database Management Services, Enterprise Management, Identity Management Software, Identity management, Network types, Other, Privacy, Remote Access, Remote Access Software, Security Policies, Security and Privacy, Servers, Servers & Storage, Software, Software and Web Development, Standards and Regulations, State Authorities, Technology, USB, USB Cards, WLAN Security, Wireless

Channel: Other, Networking & Mgmt, Servers & Storage, Data Protection, Wireless

Identity management and SSO initiatives are not only beloved by end users afflicted with password fatigue, they're just the ticket to help tighten security and aid in compliance by maintaining identity throughout a transaction flow. Recent advances in federation--the agreements, standards and technologies that render identity and entitlements portable--should make extending authentication across multiple domains less of a hard trek. But before you sign on, realize that essential security standards are maturing at an uneven rate, particularly in the Web Services arena.

In addition, consider how realistic it is to extend SSO (single sign-on) across all your organization's application types, given that browser-based apps continue to grow in popularity and the Web services-based SOA has become the strategic application-delivery model of choice. Adopting any new strategy when requisite standards are incomplete, current standards aren't universally accepted, and legacy applications still must be accommodated makes for a devilishly complex infrastructure.

Many organizations apparently are willing to risk it.

Related Reading

More servers-storage Insights