Recently I’ve been working with a client to build a federated SSO system. One of the requirements was for internal employees to have seamless access using Windows’ Kerberos. This isn’t anything novel, and is something I’ve worked on for a number of organisations – though not for a while. However we came unstuck, with multiple OpenSSO [...]
Being at home over Christmas, followed by a week of cold weather has meant a rather poor start to my aim to achieve 10:10.
For a while I’ve been thinking about how personal identity data (often called Personally Identifiable Information, or PII) is managed – both as a consumer, and from the perspective of service providers. I’ve been following along with the work being done by (amongst others) Microsoft, Google and the Kantara Initiative UMA WG, and it seems [...]
A couple of times recently I’ve had to explain SAML-based federation to people whose areas of expertise lie outside identity and security. After repeatedly drawing things in different ways on a whiteboard, I found myself working towards a real-world analogy.
It’s a bit tortured, and not exactly representative of the inner workings of SAML, but it [...]
Last week, I gave a talk at IDM 2009 entitled ‘Privacy and Data Minimisation with Improved Business Returns’. A bit of a mouthful and the result of title-decision-by-committee, but good subject matter!
The main message of the talk was that by focusing on flows of data (particularly, but not limited to identity data) and the user [...]
On 29/30th September, I went to the OASIS Identity Management 2009 forum, the theme of which was ‘Transparent Government: Risks, Rewards and Repercussions’. It was my first time at an OASIS event, and befitting the organisation and the location (it was hosted at NIST), the content was pretty in-depth and technical.
I’d really hoped to convert [...]
There’s a stereotypical image that people who work at Microsoft are insular and inward-looking. Kim Cameron is far from that. He regularly posts insightful commentary on the ‘identity metasystem’ on his blog, and is widely seen as a ‘thought leader’ in identity management, driving forward standards such as Information Cards and taking a pragmatic, standards-based [...]
This week I’ve come across two more articles about Facebook’s poor security/privacy.
The first by Ian Glazer on the Burton Group Identity blog notes that apps can get access to all your details even if your privacy settings are set to prevent this… Whilst you can prevent a third-party app from accessing your details directly, if [...]
It’s rare that IT security and aesthetics come even close to being related, however I stumbled across something on the Information Aesthetics blog this week which peaked my interest.
I’ve come across some debate recently around passwords. It seems to be becoming common knowledge that password security generally isn’t good enough these days, and 2FA or [...]
Despite my better judgment, I’m still using Facebook. All of my friends and acquaintances use it, increasingly as an IM application, and not just for posting inane status updates. Indeed Adium, my IM client of choice, now supports Facebook chat, so I’m spending more time rather than less.
That being said, the thing I really don’t [...]
About
Nick Taylor lives in London, currently works in identity management and has an increasing obsession with things environmental.
My reading at bkkeepr
Previously
Elsewhere
You can email blog@nicktaylor.co.uk
You may also find me at these fine internet establishments:
Hosted at NearlyFreeSpeech.net.
© Nick Taylor. Powered by WordPress using the DePo Clean Theme.
