The UK is reaching significant milestones in its plan to build an identity infrastructure for a digital government that connects citizens and online services
John Fontana's blog traverses the evolving digital identity landscape and its intersection with the cloud, compliance, audit, privacy, mobile computing, API integration and security.
John Fontana is a journalist focusing on access control, identity, privacy and security issues. Currently, he is the Identity Evangelist for strong authentication vendor Yubico, where he writes and edits a blog, as well as, directs several social media channels and represents Yubico at the FIDO Alliance. Prior to Yubico, John spent five years with identity vendor Ping Identity. He also spent 15 years as a senior editor for a variety of publications, including Communications Week, Internet Week and Network World, where he focused on enterprise topics including collaboration, directories, network infrastructure, databases, open source, ERP and security. He covered IBM, Microsoft, Cisco, Oracle, Red Hat, Google among other enterprise vendors. His work has also appeared in the New York Times, CNN, CIO and Mashable.
An open source project focused on OpenID Authentication for the .Net Framework has a flaw that could allow a hacker to take control of user accounts.
Persona is an open authentication system that uses email providers to validate that a user is who they say they are.
Entrepreneur sees robust cloud industry growing from Canadian government's forthcoming digital economy strategy.
Prestigious engineering, science organization says it is working to inform those affected.
Stupid mistake: public access to logs, and more troublesome, keeping passwords in plain text, says teaching assistant who found data on IEEE FTP server.
Five organizations begin first efforts to turn identity initiative into reality.
Real-time audio snippets prove NFC-based devices are near each other to cut risk of "mafia fraud" relay attacks.
Twitter wanted no part of a fight with the New York State Supreme Court.
Massachusetts Rep. Ed Markey's proposed Mobile Device Privacy Act is aimed at protecting device users.
Klout is quietly piloting with developers its new OAuth API and KloutPass authentication verification as first steps in a larger strategy to become a platform and offer its data through other apps.
New York judge says produce data by Friday or face fines and contempt of court charges.
Survey shows depth to which Internet users are ignoring core precautions, using weak passwords, and storing sensitive data in email.
Flaw in fingerprint reader software called "nothing but a big, glowing security hole." Vulnerability exposes all files, documents on PC.
Data collected by natural gas SmartMeters used by more than nine million customers in California is now protected under a set of historic privacy rules laid out in the state's Smart Grid initiative.