We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
Cloud computing is key driver for new identity rules, says Jericho Forum

Cloud computing is key driver for new identity rules, says Jericho Forum

People being in control of their own identity is cheaper and more scalable for businesses

Article comments

The Jericho Forum’s new guidelines for designing better identity systems are timely because of cloud computing, according to Forum president Paul Simmonds.

The Jericho Forum has this week published a set of principles, the Identity, Entitlement and Access Management (IdEA) Commandments, to promote open and interoperable standards that can be used to help build identity management processes that can work on a global, de-perimeterised basis.

The Jericho Forum works to define and promote solutions on the issue of de-perimeterisation, which is becoming more widespread as organisations want to collaborate more.

“True cloud is the most extreme case of a de-perimiterised world, so cloud is definitely one of the major drivers [for the identity commandments],” said Simmonds.

“If you can make it work in the cloud environment, it will work better anywhere else.”

User or resource-centric identity management is cheaper, more scalable and more secure than traditional application or system-centric identity and access management, according to the Jericho Forum.

“Passwords are broken,” Simmonds said.

“Core identity has to be under the user’s control if it is going to work for the internet age, and to implement it, you have to support identity access management and asset management. Both of those we do wrong at the moment, and we have been doing it wrong for too long.”

Simmonds said that existing technologies for identity were purely stopgap solutions, and did not really solve the problems of managing identity in a global, collaborative and de-perimeterised environment.

The root of the problem is that current authentication systems are designed for computers, not humans, he said, and that federating existing identity access management systems was not scalable.

“There are lots of people trying to provide sticking plaster solutions because identity is broken,” he said.

Furthermore, Simmonds said that providing a ‘super persona’, for example, through a national ID card scheme, was dangerous.

“The problem is your super persona then becomes a pseudo-core identity, and you’re back to a core identity you don’t manage. It’s a really bad idea,” he said.

Share:

Comments

  • Daneen Renny I agreeIt is one of the best tool on the webIt is not only easy but feasible tooFind Google group permissions
  • Tim Dunn The Jerico Forumsnew guidelines are pragmatic and sensible One challenge in effect Cloud based Identity models is in how we can make the identity user centric At the moment the organisations who hold and manage our many identities are commmercial organisations such as banks and telcos who have abusiness case for doing so The seems to bea limited appitite for organisations to step forward andbecome trusted third parties providingasuperuser identity for users They are struggling to build the business case Lets hope we see some momentum inn this area soon
Advertisement
Send to a friend

Email this article to a friend or colleague:


PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.


ComputerworldUK Knowledge Vault

ComputerworldUK
Share
x
Open
* *