Category Archives: Uncategorized

Kerberos & load-balanced OpenSSO – GSS Channel binding exceptions

Posted on 21 February 2010 by nick

Recently I’ve been working with a client to build a federated SSO system. One of the requirements was for internal employees to have seamless access using Windows’ Kerberos. This isn’t anything novel, and is something I’ve worked on for a … Continue reading →

Posted in Uncategorized | Tagged forgerock, gssexception, identity, kerberos, openam, opensso, security, spn, sspi, sun, windowsdesktopsso | Comments Off

Burning gas

Posted on 10 January 2010 by nick

Being at home over Christmas, followed by a week of cold weather has meant a rather poor start to my aim to achieve 10:10.

Posted in Uncategorized | Tagged cold, electric, energy, gas, weather | Comments Off

Watching my PII

Posted on 6 January 2010 by nick

For a while I’ve been thinking about how personal identity data (often called Personally Identifiable Information, or PII) is managed – both as a consumer, and from the perspective of service providers. I’ve been following along with the work being … Continue reading →

Posted in Uncategorized | Tagged identity, pii, privacy, security, uma | Comments Off

SAML Federation for dummies

Posted on 7 December 2009 by nick

A couple of times recently I’ve had to explain SAML-based federation to people whose areas of expertise lie outside identity and security. After repeatedly drawing things in different ways on a whiteboard, I found myself working towards a real-world analogy. … Continue reading →

Posted in Uncategorized | Comments Off

User-centricity

Posted on 10 November 2009 by nick

Last week, I gave a talk at IDM 2009 entitled ‘Privacy and Data Minimisation with Improved Business Returns’. A bit of a mouthful and the result of title-decision-by-committee, but good subject matter! The main message of the talk was that … Continue reading →

Posted in Uncategorized | Comments Off

OASIS – Identity Management 2009

Posted on 17 October 2009 by nick

On 29/30th September, I went to the OASIS Identity Management 2009 forum, the theme of which was ‘Transparent Government: Risks, Rewards and Repercussions’. It was my first time at an OASIS event, and befitting the organisation and the location (it … Continue reading →

Posted in Uncategorized | Tagged idm09, oasis, security, tech | Comments Off

Laws of Identity

Posted on 30 August 2009 by nick

There’s a stereotypical image that people who work at Microsoft are insular and inward-looking. Kim Cameron is far from that. He regularly posts insightful commentary on the ‘identity metasystem’ on his blog, and is widely seen as a ‘thought leader’ … Continue reading →

Posted in Uncategorized | Comments Off

More on Facebook security

Posted on 7 August 2009 by nick

This week I’ve come across two more articles about Facebook’s poor security/privacy. The first by Ian Glazer on the Burton Group Identity blog notes that apps can get access to all your details even if your privacy settings are set … Continue reading →

Posted in Uncategorized | Comments Off

Chroma-Hash

Posted on 3 August 2009 by nick

It’s rare that IT security and aesthetics come even close to being related, however I stumbled across something on the Information Aesthetics blog this week which peaked my interest. I’ve come across some debate recently around passwords. It seems to … Continue reading →

Posted in Uncategorized | Comments Off

Facebook Security

Posted on 2 July 2009 by nick

Despite my better judgment, I’m still using Facebook. All of my friends and acquaintances use it, increasingly as an IM application, and not just for posting inane status updates. Indeed Adium, my IM client of choice, now supports Facebook chat, … Continue reading →

Posted in Uncategorized | Tagged data, facebook, privacy, security, tech, web | Comments Off

Category Archives: Uncategorized

Archives

Meta