Eric Norlin

Latest Posts

Global warming of the identity ocean

Global warming of the identity ocean

The big news out of the RSA conference is the announcement of a "marriage" of OpenID and CardSpace. For those that aren't up on the inner workings of user-centric identity: CardSpace is Microsoft's instantiation of the InfoCards Meta-system that Kim Cameron proposed several years ago; OpenID is a URL-centric identity protocol that has grown up with the grassroots nurturing of players like Sxip Identity, JanRain, Verisign, Cordance, Six Apart, and Netmesh.

February 8, 2007 by in Microsoft

SCC tells the mid-market identity story

SCC tells the mid-market identity story

The RSA conference always serves as one of the two or three windows that the identity community uses to launch new products (the other two being Burton Group's Catalyst and our own Digital ID World conference). As such, the weeks leading up to RSA always feature a spate of new company briefings.

January 29, 2007 by in Developer

Grading our identity predictions from 2006

Grading our identity predictions from 2006

At the beginning of 2006, we posted a list of predictions over on Digital ID World for the upcoming year in identity. In keeping with our historical tradition, I'd like to grade our past performance prior to looking toward the future.

December 13, 2006 by in Security

Does authorization equal entitlements?

Does authorization equal entitlements?

Back in the early mists of identity time, "identity management" was referred to as "AAA" (triple A) -- authentication, access control and authorization. Over time, AAA evolved to mean authentication, authorization and acountability.

November 20, 2006 by in Security

Federation enters a new phase

Federation enters a new phase

Two recent releases in the federated identity marketplace caught my eye -- and may speak to the development of federation deployments:1. Ping Identity announced that the U.

November 16, 2006 by in Oracle

Who is an identity-based NAC vendor?

Who is an identity-based NAC vendor?

Network Access Control ("NAC") was an emerging focus at last September's Digital ID World conference. The reason for including NAC in the agenda arose from my belief (fueled by talks with enterprises) that network-layer identity management was an area that is fast becoming an important piece of enterprise architecture.

November 13, 2006 by in Networking

Understanding "identity management"

Understanding "identity management"

Paul Murphy has been writing about identity management over on his Managing Linux blog. His basic thesis is that while most CIOs now are putting "identity management" as a top priority, most also can't tell you what "identity management" is.

November 1, 2006 by in Security

A tipping point?

A tipping point?

Way back in the early mists of identity time, I was speaking with Bryan Field-Elliott (then CTO of Ping Identity) about the earliest drafts of the Liberty Alliance protocols, and whether or not they could be used for what we then called "internet identity." (Note: "internet identity" is now called "URL-based identity," or even more broadly and less accurately "user-centric identity.

October 19, 2006 by in Enterprise Software

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.
See All

Most Popular