Archive for the ‘identity’ Category

Amazon has launched new web services designed to simplify the building and operation of mobile applications using their cloud as a back end. Cognito provides an identity management platform and key/value store, and is complemented by Mobile Analytics. The AWS Mobile SDK has been updated to version 2.0 to provide integration with the new services, and there are samples in […]


I got an email from my bank yesterday telling me that they’re rolling out two factor authentication (2FA) to protect their my money from fraudsters. It looks like a pretty standard one time password (OTP) based scheme that will have a choice between mobile and physical tokens. They’re being pretty inflexible about the deployment model […]


Authorization

17May13

In which I examine why XACML has failed to live up to my expectations, even if it isn’t dead, which has been the topic of a massive blogosphere battle in recent weeks. Some background I was working with the IT R&D team at Credit Suisse when we provided seed funding[1] for Securent, which was one […]


This isn’t a post about the nym wars. I understand why people are upset about the real names policy, but I’m pretty ambivalent about it myself. I certainly don’t have anything to add to the great stuff that’s been said already by IdentityWoman, ESR, Kevin Marks and Charlie Stross. My concern is more mundane – […]


This is my third post in a series looking at how federated identity has becoming a reality (I first looked at Twitter, and then Google). Before we get started I kind of liked Facebook in the early days that I used it, but frankly I never expected it to last. I thought that like the social […]


This is my second post in a series looking at how federated identity has becoming a reality (I first looked at Twitter). The user experience The basic premise of federated identity is first you sign into something that you use a lot, and then the platform reuses that sign in to get you into other […]


Federated identity seems to have sneaked up on us. A couple of years back federated identity was some huge enterprisey thing that was costly and took time to implement. Then a bunch of service providers started to be identity providers, but there were no relying parties making the whole effort somewhat useless. Now it seems […]


Tim Bray has a post up about numbers, and this began as a comment but grew a little too long. I once described telephone numbers as ‘the original digital identity‘. The trouble is that for way too long they were associated to land lines (and hence geographic locations) and then mobiles came along and tied […]