2014-07-19
A new identity relationship
I’ve been writing on this blog about identity and relationships for a long time (some samples…)....
2013-05-13
New: Modern authorization systems and XACML
Over on the Forrester blogs, I take a look at XACML, advocating that it needs to...
2013-04-02
Consensual impersonation is delegation done very wrong
I’ve got a new post up on the Forrester blogs about “consensual impersonation”, which is what...
2012-12-31
New post: Make A Resolution: Kill Your P@55W0rD Policies
Over on the Forrester blogs, I’ve got a post meant to inspire IT folks to think...
2012-03-12
New post: Venn of access control for the API economy
Up on the Forrester blogs, I present a new Venn diagram that compares OAuth, OpenID Connect,...
2012-02-13
New: strong authentication research: “bring your own token”
Over on the Forrester blogs, I talk about my just-published TechRadar™ on strong authentication, and the term...
2011-10-24
New: Musings on SCIM after IIW
Over on the Forrester blogs, I talk about the latest progress on Simple Cloud Identity Management...
2011-07-15
New: Report contemplating OAuth and “Zero Trust identity”
Is it possible for an enterprise to turn itself inside-out? Apparently so. I’ve got a new...
2011-06-10
New: “Participating In Markets For Portable Identities In The Cloud: What’s The Coin Of Your Realm?”
I’ve got a new post up on the Forrester blogs, discussing a “markets for portable identity”...
2011-05-10
New: “Protecting Internal APIs – Is OAuth Ready For Its Closeup?”
Check out my new post on the Forrester blog, looking to hear about your experience and...