As the internet continues to become more hostile and Information Technology infrastructure comes under contractual and government regulation (RIPA, PCI-DSS, PCSA, HIPAA, FISMA), protecting the network or the host is insufficient to defend an IT infrastructure from attacks. Defending the core of the infrastructure - the data - is the only long-term and viable solution to this conundrum.

Encryption of data is fast becoming the last bastion of defense.

As the internet continues to become more hostile and Information Technology infrastructure comes under contractual and government regulation (RIPA, PCI-DSS, PCSA, HIPAA, FISMA), SOA-based applications will need to address issues of data security, privacy and accessibility in better ways than traditional architectures have dealt with them.

By David Koenig
6:04 p.m. PT, Thurs., Jan. 17, 2008

PLANO, Texas - Personal information on about 650,000 customers of J.C. Penney and up to 100 other retailers could be compromised after a computer tape went missing.

Responses to "prediction" newsletters usually come in hard and fast, and last week's predictions newsletter was no exception. I'll be talking about some of those reactions over the coming weeks but today I want to concentrate on one particular area: the convergence of federation, role-management and provisioning - along with entitlement management - to produce real tools for collaboration.

 

I had a very interesting call with a guy responsible for a whole lot of identity stuff at a company we all would recognize on friday of last week. The "interesting" part began in him initiating the call (normally, I do such things). Come to find out that he was doing so because he was in search of "the next big thing" in identity (or what's on the horizon), and wanted to get my take on it.