Archive for the ‘identity’ Category
Bespoke realities
TL;DR My ad blocker has been hiding things from me. Mostly things that I don’t want to see. But what we do see, and what we don’t see, is all part of crafting bespoke realities. Background My friend Ben Ford frequently says “What we perceive as reality is an internal simulation of our interaction with […]
Filed under: identity, marketing, politics, technology, wibble | 2 Comments
Tags: ads, bespoke, blocker, reality, simulation, social media, surveillance capitalism
Amazon has launched new web services designed to simplify the building and operation of mobile applications using their cloud as a back end. Cognito provides an identity management platform and key/value store, and is complemented by Mobile Analytics. The AWS Mobile SDK has been updated to version 2.0 to provide integration with the new services, and there are samples in […]
Filed under: cloud, identity, InfoQ news, mobile | Leave a Comment
Tags: amazon, analytics, android, aws, Cognito, identity, iOS, mobile
I got an email from my bank yesterday telling me that they’re rolling out two factor authentication (2FA) to protect their my money from fraudsters. It looks like a pretty standard one time password (OTP) based scheme that will have a choice between mobile and physical tokens. They’re being pretty inflexible about the deployment model […]
Filed under: identity, security | 2 Comments
Tags: 2FA, banking, identity, NFC, online, OTP, security, twitter, user experience, UX
Authorization
In which I examine why XACML has failed to live up to my expectations, even if it isn’t dead, which has been the topic of a massive blogosphere battle in recent weeks. Some background I was working with the IT R&D team at Credit Suisse when we provided seed funding[1] for Securent, which was one […]
Filed under: identity, security | Leave a Comment
Tags: access control, ACL, authorisation, authorization, coarse grained, entitlements, fine grained, ldap, ldif, REST, Securent, service, SOA, SOAP, xacml
This isn’t a post about the nym wars. I understand why people are upset about the real names policy, but I’m pretty ambivalent about it myself. I certainly don’t have anything to add to the great stuff that’s been said already by IdentityWoman, ESR, Kevin Marks and Charlie Stross. My concern is more mundane – […]
Filed under: could_do_better, identity | 2 Comments
Tags: contacts, email, G+, google, home, identity, persona, profile, work
It’s time for another one of those posts where the purpose is to save me from repeating myself, and also hopefully seed some ideas into the industry. I take inspiration from my recent purchase of some Vibram Five Fingers, which I hope to review here another day. It boils down to this – I see […]
Filed under: identity, security | 1 Comment
Tags: account, audit, break glass, entitlements, idm, portal, provisioning, review, self service, service, system, technical
Identity Providers – the rest
This is my fourth and final post in a series looking at how federated identity has broken into the mainstream (I previously looked at Twitter, Google and Facebook). MyOpenID (JanRain) When I first needed an OpenID identity provider (IDP) this was the service that I was pointed to (thanks @psd). From a security perspective there’s […]
Filed under: blogging, could_do_better, identity | Leave a Comment
Tags: about.me, cardspace, federation, Flickr, google, Gravatar, identity, identity management, idm, information card, JanRain, Live, login, Microsoft, MyOpenID, OpenID, WordPress, WordPress.com, Yahoo!
Identity Providers – Facebook
This is my third post in a series looking at how federated identity has becoming a reality (I first looked at Twitter, and then Google). Before we get started I kind of liked Facebook in the early days that I used it, but frankly I never expected it to last. I thought that like the social […]
Filed under: identity | Leave a Comment
Tags: Facebook, Facebook connect, federated, federation, Graph API, oauth, OpenID, persona, single sign on, SSO
Identity Providers – Google
This is my second post in a series looking at how federated identity has becoming a reality (I first looked at Twitter). The user experience The basic premise of federated identity is first you sign into something that you use a lot, and then the platform reuses that sign in to get you into other […]
Filed under: identity | 5 Comments
Tags: federated, federation, gapps, gmail, google, identity, OATH, oauth, OpenID, persona, single sign on, SSO, two factor
Identity Providers – Twitter
Federated identity seems to have sneaked up on us. A couple of years back federated identity was some huge enterprisey thing that was costly and took time to implement. Then a bunch of service providers started to be identity providers, but there were no relying parties making the whole effort somewhat useless. Now it seems […]
Filed under: identity | Leave a Comment
Tags: federated, federation, identity, oauth, OpenID, PeerIndex, persona, PlanCa.st, twitter