It’s been an absolutely fascinating week reading the output of Burton’s Catalyst Conference.  Thanks to Mark Dixon over at Sun for his great recap of the conference.  And to add to the chorus of voices, congratulations to Ian Glazer on his new job at Burton Group!

It’s Ian’s first post on the Burton Group blog that’s generated some rapid fire responses in the Identity Management blogosphere (which is a very good thing!).

Ian airs his concern over the statement from potential Identity Management customers, “I’m not ready to do roles, so I won’t attempt user provisioning.”

*sigh* (make the jump for my rant)

Read more »

Filed under: Identification, Provisioning, Security | 2 Comments »

Two recent Blog posts (by Kearns and JBohren) refer to a damning number - the high percentage of orphan accounts that exist in most applications and most large organizations. An “orphan” is an account that belongs to some person who’s left the organization (or never existed in the first place). It can’t be associated with a real person with a real need for access.

The usual concern here is for corporate assets: The “ex” employee can still be logging in and looking at data after he’s gone to work for your competitor.  We have many examples where automation has exposed and eliminated this back-door.

But what about you and your personal liability? If you leave a company, and your ID stays behind, and stays active, are you liable if it’s used for bad purposes? Personally, if I were doing something “prohibited” I’d much rather be using an ID belonging to a departed employee or contractor.

As a consultant, I deal with this issue a lot. Read more »

Filed under: Identification, Legal, Provisioning, Security | 1 Comment »

Just a bit of housekeeping on a lazy Sunday…  we’ve added the ability to subscribe to LiveBolt blog updates via email.  Just use the link in our header, next to the RSS feeds, or click here to subscribe.

And remember… only 2 days left in the IronKey Giveaway!!!  </shameless_plug>  Just click here for more info on the contest…  Thanks to all who have commented thus far!

Filed under: General | No Comments »

Folks,

Just a reminder — we’re giving away a FREE 1GB IronKey Personal USB thumbdrive ($80 value). Really a cool device — check out the geeky specs.

You need to enter before noon, on July 1st. Just make sure to read our “Personal Metadirectory for Passwords” article, and leave a comment there with your response to our questions for a chance to win!

And don’t forget to tell your friends!

Filed under: General, Uncategorized | No Comments »

Indian Government Wants Blackberry Keys

The recent issues between RIM and India bring Smart Phone security under the microscope. RIM offers “secure” email and text messaging. It’s secure because it is encrypted, and because it routes through RIM servers. RIM holds the encryption keys. India doesn’t like that, and it wanted RIM to make the keys available to the Indian government, so that the government could decrypt and read the messages.

To my knowledge this type of encrypted messaging is currently a RIM exclusive. No other cell handset supplier offers this service. And, it’s one of the main reasons corporations are comfortable sending their internal mail to BlackBerrys, and not to the generic phone.

I assume that in the US, at least, the government doesn’t have RIMs encryption keys. Further, RIM might decrypt particular traffic in response to a search warrant, but that warrant would be the extent of the activity.

So, if you are in India and you have a BlackBerry and you are concerned about message security, what can you do? (Likewise, if you are in the USA, and you are paranoid security conscious, what options do you have?) Make the jump…

Read more »

Filed under: Mobile Access, Privacy, Security, encryption | 3 Comments »