Digital identities are fundamental to enable digital interactions and transactions on the web. The current digital identity model, based on the "identity = data" paradigm, starts showing its limitations when addressing people's expectations about their identities (in terms of preferences, privacy, trust, etc.) and providing them with degrees of assurance that expectations will be met. An alterative model is introduced, based on the "identity = data + policies" paradigm, along with an underlying policy management framework. Details are given on how this model can address the above issues and how the framework can be implemented.
Did you find this white paper useful?
22 out of 40 users found this white paper useful
Related white papers
Balancing Security Against Productivity
What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Novell Zenworks Endpoint Security Management: Total Control from a Single Console
Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...
Web application security: automated scanning versus manual penetration testing
Web sites are vulnerable to Web application attacks and a great percentage of these attacks occur over the HTTP/S protocols, ports that are often exposed to the entire online community....
About RATs ... A Look at the Problem of SubSeven and "Remote Administration Trojans"
A Remote Administration Tool, or RAT, is a Trojan that when run, provides an attacker with the capability of remotely controlling a machine via a "client" in the attacker's machine,...
Intel Case Study: Linksys
Delivering the optimum combination of security and performance in a cost-effective, manageable wireless product was both a design challenge and a business challenge for Linksys. Linksys found the ideal low-cost,...
Global Best Practices in Email Security, Privacy and Compliance
A new generation of email security solutions is needed to meet the challenges of growing message traffic, rapidly-evolving security threats and increasingly complex data protection and privacy regulations worldwide. Securing inbound...
